Java Reference
In-Depth Information
What happened? Once you have established a secure connection with the web serv-
er, the server certificate has been sent to the browser. Since the certificate has not
been signed by any recognized CA, the browser security sandbox warns the user
about the potential security threat.
This is an in-house test so we can safely proceed by choosing
Continue to this
website
. That's all you need to do in order to activate the Secure Socket Layer with
a self-signed certificate.
Securing HTTP communication with a certificate signed by a
CA
Having your certificate signed requires a certificate-signing request (CSR) to be is-
sued to a CA, which will return a signed certificate to be installed on your server. This
implies a cost for your organization, which depends on how many certificates you
are requesting, the encryption strength, and other factors.
Firstly, generate a CSR using the newly created
keystore
and keyentry:
keytool -certreq -keystore jboss.keystore
-alias as7alias -storepass mypassword -keypass
mypassword -keyalg RSA -file certreq.csr
