Convert .der/.crt/.p12 to .jks File or Create .jks File Using Keytool

Naveen June 28, 2016 How To's, Testing Learning, Web Service 1 Comment

While testing web services or performing any web service test using https URLs which are secure, there are chances that we could face the issue as client side authentication required. Sometimes client certificate or SSL throws javax.net.ssl.SSLHandshakeException error. This usually happens when browser or tool like Jmeter that you use for web services testing, does not find the certificate or not able to read the certificate sent from client side.

If you are facing such kind of issues, and you need create .jks file to provide the authentication or if you are not able to convert .der or .crt or .p12 file to .jks file, please follow the steps to perform the conversion or create .jks file using keytool.exe.

  • Keytool.exe comes by default with all the latest Java. Make sure java is available in your system.
  • Open browser and load https URL will prompt you to install the certificate if not installed in your browser.

jks1

  • Click on AddException and then Confirm Security Exception will install the certificate in the browser.
  • Click on lock icon shown in the address bar.

jks2

  • Click on More Information and then View Certificate.
  • Click on Details tab and then click on Export button.

jks3

  • Save the certificate in java bin folder with any name.
  • Change the file extension with .p12 extension. Example (certificate.p12)

jks4

  • Now open command prompt and navigate to java bin folder.

jks5

  • keytool -importcert -alias mycert -file certificate.p12 -keystore certificate.jks -storepass password

jks6

  • Once you hit enter it will ask you to answer Trust this certificate? Type yes and hit enter again.

jks7

Here you have generated .jks file with file name certificate.jks and the file will be located in Java bin folder.

jks8

Now you have successfully converted .p12 file to jks file. The same process you can apply to change any file like .der file or .crt file to convert in .jks file. What all you have to do is to replace the .p12 file with your file and give the same name in command prompt while executing the command.

One Response to “Convert .der/.crt/.p12 to .jks File or Create .jks File Using Keytool”

  1. raj says:
    September 14, 2019 at 8:38 pm

    getting ssl handshake exception

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

AlphaOmega Captcha Classica  –  Enter Security Code