trying to add an actual SSL cert to server.json. ...
# box-products
trying to add an actual SSL cert to server.json. starting with a wildcard .pfx, one of my colleagues extracted the .crt and .key files using openssl. i've added these to server.json like so:
Copy code
but getting an exception on server start (more in thread)
getting the following exception:
Copy code
[INFO ] Runwar: Starting RunWAR 4.5.2
[INFO ] Runwar: HTTP2 Enabled:true
[INFO ] Runwar: Enabling SSL protocol on port 8443
[ERROR] Runwar: Unable to start SSL:Could not load certificate
[ERROR] Could not load certificate
[ERROR] at
[ERROR] at runwar.Server.startServer(
[ERROR] at runwar.Start.main(
[ERROR] Caused by: java.lang.ClassCastException: class org.bouncycastle.pkcs.PKCS8EncryptedPrivateKeyInfo cannot be cast to class org.bouncycastle.asn1.pkcs.PrivateKeyInfo (org.bouncycastle.pkcs.PKCS8EncryptedPrivateKeyInfo and org.bouncycastle.asn1.pkcs.PrivateKeyInfo are in unnamed module of loader 'app')
[ERROR] at
[ERROR] at
[ERROR] at
the .key file has a password on it, would that cause this, or is there something else i'm missing
Try adding "keyPass":"yourPassword" in the SSL node
I did this same thing this morning
will try that
just need to get the pw...
same exception. i do see PKCS8 in the exception above, and after asking i'm being told the files were extracted with PKCS12 which is how they're exported from IIS (i'm told)
i don't really know enough about these crypto topics to navigate on my own. THEY SAID IT WOULD BE SIMPLEĀ©
Mine is identified by lucee as: RSA PKCS#8
yeah, trying now to see how to go about converting from 12 to 8