Java Truststore and Keystore

Import The Key-pair Into Java Keystore

  1. Convert the key-pair into PKCS12 keystore.

    openssl pkcs12 -export -in server.crt -inkey server.key -out server.p12 -passout env:KEYPAIR_PWD -name server-name

    -passout: env:<VAR_NAME> / file:<PATH> / fd:<NUM> / stdin

  2. Import the PKCS12 keystore into the Java keystore.

    keytool -importkeystore -noprompt -srckeystore server.p12 -srcstoretype pkcs12 -srcstorepass <KEYPAIR_PWD> -destkeystore server.jks -deststoretype JKS -deststorepass <KEYSTORE_PWD>


  3. Check-out here for the list of the most common Java keytool commands.

Last updated