Search Support
contact us

Let Us Make it Easy for You. Call 1-877-898-3290 for MyTime Support™. Learn More

Installing SSL Certificate Topics

Article Rating: 2 / 5 Votes: 28

Installation of an EV SSL Certificate for Java-Based Web Servers

Installation of an EV SSL Certificate for Java-Based Web Servers

 

You will receive 5 files in a zip file from Network Solutions. Alternatively, they can be downloaded individually from the individual file download section in Account Manager.

These must be imported in the correct order:


AddTrustExternalCARoot.crt
UTNAddTrustServer_CA.crt
NetworkSolutionsUTNServerCA.crt
NetworkSolutionsEVSSLCA.crt
domainname.com.crt  (where "domainname.com" is your domain)

 

In the below examples replace the keystore name 'domain.key' with your keystore name.
Use the keytool command to import the certificates with aliases as follows:

keytool -import -trustcacerts -alias root -file AddTrustExternalCARoot.crt -keystore domain.key

Use the same process for the UTNAddTrustServer certificate using the keytool command:


keytool -import -trustcacerts -alias INTER1 -file UTNAddTrustServer_CA.crt  -keystore domain.key

 

Use the same process for the Network Solutions UTN certificate using the keytool command:


keytool -import -trustcacerts -alias INTER2 -file NetworkSolutionsUTNServerCA.crt  -keystore domain.key

 

Use the same process for the Network Solutions EV SSL certificate using the keytool command:


keytool -import -trustcacerts -alias INTER3 -file NetworkSolutionsEVSSLCA.crt -keystore domain.key

 

Use the same process for the site certificate using the keytool command, if you are using an alias then please include the alias command in the string. Example:

keytool -import -trustcacerts -alias "yyy" -file "domainname.com".crt -keystore domain.key

(where "yyy" is the alias specified during CSR creation)

 

CONTINUED EXAMPLE BELOW:

 

The password is then requested.

Enter keystore password: (This is the one used during CSR creation)

The following information will be displayed about the certificate and you will be asked if you want to trust it

 

(the default is no so type 'y' or 'yes'):
Owner: CN= Root, O=Root, C=US
Issuer: CN=Root, O=Root, C=US
Serial number: 111111111111
Valid from: Fri JAN 01 23:01:00 GMT 1990 until: Thu JAN 01 23:59:00 GMT 2050
Certificate fingerprints:
MD5: D1:E7:F0:B2:A3:C5:7D:61:67:F0:04:CD:43:D3:BA:58
SHA1: B6:GE:DE:9E:4C:4E:9F:6F:D8:86:17:57:9D:D3:91:BC:65:A6:89:64
Trust this certificate? [no]:

Then an information message will display as follows:

Certificate was added to keystore

All the certificates are now loaded and the correct root certificate will be presented.