This is version . It is not the current version, and thus it cannot be edited.
[Back to current version]   [Restore this version]

Portecle is a free open source program that can help with certificate management. http://portecle.sourceforge.net/

Portecle runs on any OS. Here is a guide on creating a new certificate.


Run portecle directly from the portecle website. Click the link to download, and run the application. (Portecle requires java to be installed on your machine to run.)
http://portecle.sourceforge.net/webstart/portecle.jnlp

Select new keystore from the file menu.

attachments

Use the default JKS format.

attachments

Now, select generate key pair from the tools menu.

attachments

Select your bit strength.

attachments

Fill in the information about you or your company. Make sure the common name is your website host address.

attachments

Use an alias name that is the default of your website name.

attachments

Use a password that will be used again later for the keystore password. Make it the same.

attachments

Now right click on your key pair and select generate certification request.

attachments

Save the csr to your desktop or somewhere else.

attachments

Get your CSR signed by your certificate authority. (This process is different for every cert authority. But the files you download after they have signed it should be in the Java or Tomcat format for simplicity. Do not get a bundle, but get the individual files.)

Now import the certificates given to you by your certificate authority. These are usually things like root, or intermediate, etc.

attachments

Now be sure to trust the certificate authorities builtin certificate, or else this next step will fail Go to the tools menu in Portecle, and select Options. Enable 'Use CA Certs Keystore'.

attachments

Now, import the "signed" version of your certificate file using the right click Import CA Reply menu.

attachments

The next popup will be a request for you to enter the password for your CA Certs keystore file. The password here is 'changeit'. Enter that.

attachments

After this you may be asked for your cert password from the earlier steps. Enter it if prompted.

And finally, save your keystore with a .jks extension if its .jks or if its a pkcs12 format, then use .pfx for the extension.

attachments

Now you can reference this keystore in CrushFTP under the server preferences, Encryption, SSL tab. Or you can set it specifically on the advanced tab of a particular port.

Add new attachment

Only authorized users are allowed to upload new attachments.

List of attachments

Kind Attachment Name Size Version Date Modified Author Change note
png
alias.png 26.1 kB 1 25-Oct-2018 04:31 Ben Spink
png
bits.png 28.7 kB 1 25-Oct-2018 04:31 Ben Spink
png
cacerts_pass.png 13.9 kB 1 25-Oct-2018 04:31 Ben Spink
png
cert_info.png 52.4 kB 1 25-Oct-2018 04:31 Ben Spink
png
csr.png 47.2 kB 1 25-Oct-2018 04:31 Ben Spink
png
generate_keypair.png 45.8 kB 1 25-Oct-2018 04:31 Ben Spink
png
import_cert.png 48.6 kB 1 25-Oct-2018 04:31 Ben Spink
png
import_reply.png 26.5 kB 1 25-Oct-2018 04:31 Ben Spink
png
jks.png 34.4 kB 1 25-Oct-2018 04:31 Ben Spink
png
new_keystore.png 43.6 kB 1 25-Oct-2018 04:31 Ben Spink
png
password.png 29.3 kB 1 25-Oct-2018 04:31 Ben Spink
png
portecle.jar.png 37.4 kB 1 25-Oct-2018 04:31 Ben Spink
png
portecle_options.png 23.6 kB 1 25-Oct-2018 04:31 Ben Spink
png
save.png 48.1 kB 1 25-Oct-2018 04:31 Ben Spink
png
save_csr.png 72.6 kB 1 25-Oct-2018 04:31 Ben Spink
« This particular version was published on 25-Oct-2018 04:31 by Ben Spink.
G’day (anonymous guest)
CrushFTP9 | What's New
JSPWiki