Sorry for confusion in last statement, but the ISA server needs to have the private key installed on it which is on the jboss-jetty server.
Sorry for confusion, let me know if anyone can be of help.
I think an article I wrote a while back will help you. Take a look at
It covers extracting a code-signing key from a Java keystore and importing it into Windows certificate store.
Looks good, however having problems.
I'm not really pressured into getting this done, because we can always use tunneling mode through our ISA server to get to it. It would be nice to have work correctly to do application filtering (ISA needs copy of key to decrypt/encrypt the packets). Being that this is a 3rd party software vendor that really sucks, I'm not surprised with the errors I'm receiving. The vendor will not support me on putting on a SSL cert!!! All they do is forward me to a word document, that looked like a third grader typed up!!! So support on exporting the private key with them is probably not going to happen.
Although if you want to help...you can. Don't feel pressured. Here is what I get when running your tools. The dos window displays this:
java.security.unrecoverablekeyexception: Cannot recover key at sun.security.provider.KeyProtector.recover(Unknown Source) at sun.security.provider.JavaKeyStore.engineGetKey(Unknown Source) at java.security.KeyStore.getKey(Unknown Source) at ExportPrvKey.main(ExportPrvKey.java:36) Generating new PFX Key/Certificate pair, please enter a password <--receive popup Created new PFX key+certificate: certificate.pfx <--receive popup
At the <-- receive popup locations, I get a win32 popup that states
The ordinal 16 could not be located in the dynamic link library SSLEAY32.dll
If you want to help, fine, but I'm not expecting this to work with this app. It won't be then end of the world for me, but would be nice to do app filtering!!!!!