In order to obtain a Certificate from the Certificate Authority of your choice you have to create a so called Certificate Signing Request (CSR). That CSR will be used by the Certificate Authority to create a Certificate that will identify your website as \"secure\". To create a CSR follow these steps:
- Create a local Certificate (as described in the previous section):
| | |
| keytool -genkey -alias tomcat -keyalg RSA \\
-keystore <your_keystore_filename> | |
| | |
Note: In some cases you will have to enter the domain of your website (i.e. www.myside.org
) in the field \"first- and lastname\" in order to create a working Certificate. - The CSR is then created with:
| | |
| keytool -certreq -keyalg RSA -alias tomcat -file certreq.csr \\
-keystore <your_keystore_filename> | |
| | |
Now you have a file called certreq.csr
that you can submit to the Certificate Authority (look at the documentation of the Certificate Authority website on how to do this). In return you get a Certificate.