Play with SSL certificates using Java-11 and openSSL [JKS - PEM - PFX - PKCS #12]
Steps for making a Java Key Store[JKS] and adding certificates. In this process main this you need to remember that the alias name . Because in some application using alias name for binding with domain certificate. a. Command for normal domain certificate keytool -genkeypair -keyalg RSA -keysize 2048 -alias mydomain -keystore mydomain.jks b. Command for wildcard domain certificate keytool -genkeypair -keyalg RSA -keysize 2048 -alias mydomain -keystore mydomain.jks -ext "san=dns:test1.mydomain.com,dns:test2.mydomain.com,ip:192.168.1.1" When executing above both command you will get some questions, in that, make sure you are giving your domain name like www.mydomain.com and in the case of wildcard *.mydomain.com as your first and last name. c. Generation of certificate request file with normal KeyStore...