Message-Id: <199905051631.JAA24668@laguna.eng.sun.com>
Date: Wed, 5 May 1999 09:31:37 -0700 (PDT)
From: Jan Luehe <luehe@laguna.eng.sun.com>
Subject: Re: certreq Test problem
To: java-security@java.sun.com, roussel@univ-mlv.fr,
Gilles:
> Then if I try to import directly this cerificate, it logically fails because
my keystore
> does not contain thawte self-signed certificate, which is the next link in
previous certificate.
Note that JDK 1.2.2 will contain that certificate in the
jre/lib/security/cacerts file, so you won't have to
import it yourself.
> keytool -import -alias thawte -file thawte.cer
> keytool error: Signature not available
That means that the self-signed certificate is signed w/ RSA,
and you need to install a provider that implements RSA
so you can verify the signature. The default provider that
ships w/ the JDK does not support RSA, just DSA.
See
http://java.sun.com/products/jce/jce12_providers.html
for a list of RSA providers.
Jan