Supplied key (null) is not a RSAPrivateKey instance error in the Server Settings / Server Certificates screen

Description

keytool insists on storing full certificate chain when importing certificate into the keystore, therefore it is sometimes necessary to import a CA root into the certificate keystore (not only into the truststore).

After importing certficate for the key, all additional certificates (intermediary CAs, root CAs, etc.) should be deleted from the keystore

using "keytool -delete", otherwise a "Supplied key (null) is not a RSAPrivateKey instance" exception will be displayed in the Server Certificates screen.

Exception itself can be fixed easily:

Environment

None

Activity

Show:

wroot

December 10, 2011, 9:58 AM

Copy link to comment

This is marked as Resolved. Is it already applied to the SVN?

Marcin Marcin

December 10, 2011, 11:52 AM

Copy link to comment

Nope, it is not committed. Who should be the assignee?

wroot

December 10, 2011, 12:32 PM

Copy link to comment

You can try assigning it to Daryl Herzman. I can take too long for Guus to review the patch (haven't heard from him for a while).

Daryl Herzmann

December 10, 2011, 4:24 PM

Copy link to comment

Thanks, will commit it.

Daryl Herzmann

December 10, 2011, 4:27 PM

Copy link to comment

r12905

Fixed

Assignee

Daryl Herzmann

Reporter

Marcin Marcin

Labels

exception

openfire

ssl

Expected Effort

None

Ignite Forum URL

http://community.igniterealtime.org/message/218690

Components

Admin Console

Fix versions

3.8.0

Affects versions

3.7.1

Priority

Minor

Configure