3 Replies Latest reply on Jan 25, 2019 1:58 AM by samphal

    Certificates not found in keystore

    nickarls

      I'm trying to set up SSL/HTTPS on a WildFly 9.0.2 (issue also reproducible on 10.0.0) but I'm having the issue of WF not seeing any certificates. I get the error

       

      MSC000001: Failed to start service jboss.server.controller.management.security_realm.SSLRealm.key-manager: org.jboss.msc.service.StartException in service jboss.server.controller.management.security_realm.SSLRealm.key-manager: WFLYDM0083: The KeyStore C:\Java\WildFly-9.0.2.Final\standalone\configuration\wildfly.keystore does not contain any keys.

       

      But doing a

       

      keytool -list -v -keystore c:\java\wildfly-9.0.2.Final\standalone\configuration\wildfly.keystore -storepass wildfly | find "Alias"

       

      gives me

       

      Alias name: root

      Alias name: wildfly

       

      Once imported, any certificate listed with keytool should also be usable by WF, right?

       

      Thanks in advance,

      Nik

        • 1. Re: Certificates not found in keystore
          mchoma

          Probably (based on message) your keystore does not contains private key.

           

          What is output of

          keytool -list -v -keystore c:\java\wildfly-9.0.2.Final\standalone\configuration\wildfly.keystore -storepass wildfly | grep -B 3 "PrivateKeyEntry\|SecretKeyEntry"

          ?

          1 of 1 people found this helpful
          • 2. Re: Certificates not found in keystore
            nickarls

            You were correct in guessing the private key. I retried by creating a pkcs12 keystore with openssl for the certificate, private key and CA certificate and imported it into the JKS keystore. I had another issue when I omitted the keypassword in the import and it didn't default to the keystore password, resulting in a failure in retrieving the key. Thanks for the pointer!

            • 3. Re: Certificates not found in keystore
              samphal

              Please help to check my issue below: