How to move an SSL Certificate from Apache to Palo Alto Networks

Both Apache and Palo Alto Networks uses x509 pem/crt/cer certificate files for its configurations. You will follow these steps to copy, move and import your files from Apache to Palo Alto Networks system. Apache systems are very customizable. The directory location and naming of the individual files needed vary depending on your personalized system. Below are generalized instructions. You will have to apply these examples to your own environment.  We will start by assuming that you have already successfully installed the SSL certificate on one Apache web server. Step 1: Finding/converting your SSL certificate and key file on Apache: Referencing the httpd.conf or ssl.conf  file on the Apache system look for the location and directories of the three files necessary […]

Read More

How to Convert an SSL Server Certificate from Apache to PKCS12/PFX

Depending on your network you may have to move your SSL/TLS server certificate and its private key from one system to another. This article covers how to move your SSL certificate, its private key, and its intermediate CA from Apache to pfx also known as a pkcs#12 file. This will require a conversion using OpenSSL that is on the Apache System. Apache systems are very customizable. The directory location and naming of the individual files needed vary depending on your personalized system. Below are generalized instructions. We will start by assuming that you have already successfully installed the SSL certificate on the Apache web server. To move your certificate keypair from Apache to PFX perform the following: Step 1: Finding your […]

Read More

JBoss Tomcat X509 – SSL Installation

Like the majority of server systems you will install your SSL certificate on the same server or keystore  where your Certificate Signing Request (CSR) was created. Your private key will always be left on and inside the  server system and keystore where the CSR was originally created. Your SSL certificate will not work without original keystore file. We will assume that this is the original system. JBoss is a very customization environment below are generalized instructions, you will have to adapt these instructions to your own environment. If you lose your keystore file or your password to access it. your SSL Certificate will no longer match and you will need to replace the certificate. In order to install your X509 SSL […]

Read More

How to download your SSL Certificate purchased though Acmetek User Portal

Sometimes depending on the circumstances an organization may have to download their SSL certificate. Doing so will require the following for the SSL certificate in question. Common Name or Order ID. Organizational or Technical Contact’s e-mail address associated with the SSL order. To manage your SSL Order perform the following: Click on the below link to manage the Certificate. The link will open a Symantec Order Specific Page, where you will be asked to enter the following for security purposes. Order ID or the Common Name for the order. Email address (organization or technical). Image number. Click Continue. Click Request Access against the correct order ID. An e-mail will be sent to the Organizational or Technical Contact’s e-mail address that was specified. Click on the […]

Read More

Troubleshooting: Tomcat x509 – “Failed to establish chain from reply.”

This Article consists of advanced troubleshooting to a very problematic issue that rarely comes up with versions of keytool when installing an SSL certificate in x509 format. Issue: By all normal means when following SSL Installation instructions for Tomcat using X509 you should have a smooth installation, but when importing the Intermediate CA Certificate or SSL Certificate received from the Certificate Authority you may get the following error message still. “Failed to establish chain from reply” Cause: Tomcat/keytool is a picky system. Tomcat wants to see the entire certificate chain before installation of the SSL Certificate. Typically this can be solved by importing the entire chaining path of your SSL Certificate in the following order: Root > Intermediate > SSL Certificate. […]

Read More

Tomcat using X509 – SSL Installation

Like the majority of server systems you will install your SSL certificate on the same server or keystore  where your Certificate Signing Request (CSR) was created. Your private key will always be left on and inside the  server system and keystore where the CSR was originally created. Your SSL certificate will not work without original keystore file. We will assume that this is the original system. Tomcat is a very customization environment below are generalized instructions, you will have to adapt these instructions to your own environment. If you lose your keystore file or your password to access it. your SSL Certificate will no longer match and you will need to replace the certificate. In order to install your Tomcat […]

Read More