Java Keytool Export Private Key, PKCS#12 or .p12 export or conversion from java keystore

So, I had to create a PKCS#12 type or .p12 extension certificate from a java keystore which was created using java keytool. FYI, I have jdk 1.4.2. I came to know that using keytool you cannot export the private key.

I tried various options available in keytool i.e. create a keystore of type PKCS#12 to begin with instead of the default JKS (java keystore). -storetype PKCS12.

All this didnt work and on further search on google, I came across 2 free products which can help you a lot in terms of handling the keystore, generate keystore, export private key and so on.

You can download these free products from here.

The tools are portecle-1.5 http://sourceforge.net/projects/portecle/

KeyTool IUI – GUI http://www.icewalkers.com/download/KeyTool-IUI/3073/adl/

For my needs, i.e. generate a PKCS#12 certificate from an existing java keystore, portecle-1.5 worked just fine and it was very easy to use.

I also tried the KeyTool IUI – GUI just for testing the tool and it helped me to export the private key of my RSA key pair. The reason I wanted my private key in a seperate file is to use this online site which allows conversion of certificate types online. The url is https://www.sslshopper.com/ssl-converter.html.

Hope this helps someone. :-)

Helpful Links/Tutorial for keytool, PKCS#12 :

Cryptography Tutorials - Herong's Tutorial Notes

Keytool to OpenSSL Conversion tips

Exporting the Private Key from a JKS keystore

Exporting keystore private key with WSAS

Exporting Private Keys

Good Luck. :-)

Comments

Jety said…
Thank you AjasHadi, it helped me to generate pkcs12 with portecle after I failed to do it with keystore.
2:24 AM
Asim said…
Neat entry. Thanks.
3:03 PM
Noah said…
Thank you! I've been fighting with trying to convert a DER to PKCS12 for the last day, and I think Portecle did the trick! Awesome.
12:24 PM
Sadiq said…
Life saving article....Thanks a lot dude.......
5:38 AM
ghdhair.com said…
I've just been using Portecle which seems a great product. I was able to extract the private key no problem.

Do you know of a way to test the encryption level of a CSR file ... apparently after Oct 2013 you have to submit 2048bit requests.
4:49 AM
ghdhair.com said…
Using this tool https://secure.comodo.net/utilities/decodeCSR.html you can inspect a range of properties in a csr file ... unfortunatly it seems Portecle is only creating 1024bit files.
4:54 AM
Post a Comment

Popular posts from this blog

Making text bold in Adobe Acrobat

If you want to make a text bold in Adobe Acrobat, you will have to 1. first select Advanced Editing Toolbar. 2. In advanced edit toolbar, select TouchUp Text tool. 3. Then select the text you want to make bold, right click, and select properties. 4. Under Text tab, you will find Font option. 5. Select Font option and you will see Bold option for the font that is being used. For example, if selected text is font type Verdana , then under Fonts option, you should see a Verdana Bold option. If you do not see respective Bold Font, then you would have to pick a font that supports Bold Option. I know, its unlike Word but atleast we know the way now how to do make text bold in Adobe Acrobat.
Read more

Translators not loaded --- Translators error in Dreamweaver for coldfusion.htm

I use Dreamweaver 8 on Windows XP and recently started to get this error message for no reason. It just started one day. the following translators were not loaded due to errors coldfusion.htm has configuration information that is invalid. This could also happen for XSLT.htm has configuration information that is invalid, ASP.htm: has configuration information that is invalid. ASP.NET.htm: has configuration information that is invalid. and so on. The solution to this problem is to delete FileCache_X.dat files from the Dreamweaver user configuration folder, where X is a random number and it could be different for your system. See below Dreamweaver 8 on Windows XP: C:\Documents and Settings\[username]\Application Data\Macromedia\Dreamweaver 8\Configuration All the best. I was able to successfully solve this problem
Read more

Hawks v/s PowerBuilders. July 23 2009. Match 13.

Just last night, I finished writing about Kareem from Dalcha. Today it was another Karim from Power Builders, who hit some crazy Afridi style sixes to guide Power Builders to a victory. The game was full of excitement and pressure. The Power Builders gave a complete team performance, much like their opponents, Hawks. Sagar won the toss and elected to bat first. The opening duo, Sashi and Bhavin started well. They put on 18 runs of the first 2 overs. Bhavin scored 16 and Sashi made 8. The Hawks went for their shots and were caught on the boundary. Satish of Power Builders was very impressive as He caught 3 catches in the deep. Vinay was playing well and was making the life difficult for fielders, especially at long on as the ball would turn twice or thrice before reaching the fielder. You all know who was standing there. :-). Vinay was caught on the boundary by an absolutely brilliant one handed catch by Harsha. Vinay top scored for Hawks with 22 runs and in the process, hit some beauti...
Read more