WebSphere Application Server & Liberty

Hi Team,

We are trying to connect to postgres db server that has SSL configuration from WAS. We were provided with root.crt, client.crt, client.pk8 and client.key for successful ssl handshake.
We were able to import client.crt and root.crt into truststore but not able to provide keys since they are in different format that is not recognized by Was. 

Could you please help us in this regard?

Thanks,

Neelima

Hi, can you explain the "different format" they are in?  

Brian

Hi Team,

We are trying to connect to postgres db server that has SSL configuration from WAS. We were provided with root.crt, client.crt, client.pk8 and client.key for successful ssl handshake.
We were able to import client.crt and root.crt into truststore but not able to provide keys since they are in different format that is not recognized by Was. 

Could you please help us in this regard?

Thanks,

Neelima

Hi Team,

We are trying to connect to postgres db server that has SSL configuration from WAS. We were provided with root.crt, client.crt, client.pk8 and client.key for successful ssl handshake.
We were able to import client.crt and root.crt into truststore but not able to provide keys since they are in different format that is not recognized by Was. 

Could you please help us in this regard?

Thanks,

Neelima

Hello Neelima,

  In addtion to Brian's question.

  You have client.pk8 and client.key are they the same key in different formats?

  If client.pk8 is the key (in pkcs8 format) corresponding to client.crt you can use openssl to convert that key and crt to a pkcs12 format keystore (client.p12) that you can import into WebSphere KeyStore.

  openssl pkcs12 -export -out client.p12 -inkey client.pk8 -in client.crt

  Hope this helps.  Tell us if you need more support

Regards

  Gabriel Aberasturi

Hi Team,

We are trying to connect to postgres db server that has SSL configuration from WAS. We were provided with root.crt, client.crt, client.pk8 and client.key for successful ssl handshake.
We were able to import client.crt and root.crt into truststore but not able to provide keys since they are in different format that is not recognized by Was. 

Could you please help us in this regard?

Thanks,

Neelima

Hi Gabriel,

Yes same key in different formats .pk8 and .key. We'll try the suggested solution and let you know if it works and need any further assitance.

Thanks,

Neelima

Hello Neelima,

  In addtion to Brian's question.

  You have client.pk8 and client.key are they the same key in different formats?

  If client.pk8 is the key (in pkcs8 format) corresponding to client.crt you can use openssl to convert that key and crt to a pkcs12 format keystore (client.p12) that you can import into WebSphere KeyStore.

  openssl pkcs12 -export -out client.p12 -inkey client.pk8 -in client.crt

  Hope this helps.  Tell us if you need more support

Regards

  Gabriel Aberasturi

Hi Team,

We are trying to connect to postgres db server that has SSL configuration from WAS. We were provided with root.crt, client.crt, client.pk8 and client.key for successful ssl handshake.
We were able to import client.crt and root.crt into truststore but not able to provide keys since they are in different format that is not recognized by Was. 

Could you please help us in this regard?

Thanks,

Neelima

Hi Gabriel,

We tried above command and got this error . Any insights on this ?

Thanks,

Neelima

Hi Gabriel,

Yes same key in different formats .pk8 and .key. We'll try the suggested solution and let you know if it works and need any further assitance.

Thanks,

Neelima

Hello Neelima,

  In addtion to Brian's question.

  You have client.pk8 and client.key are they the same key in different formats?

  If client.pk8 is the key (in pkcs8 format) corresponding to client.crt you can use openssl to convert that key and crt to a pkcs12 format keystore (client.p12) that you can import into WebSphere KeyStore.

  openssl pkcs12 -export -out client.p12 -inkey client.pk8 -in client.crt

  Hope this helps.  Tell us if you need more support

Regards

  Gabriel Aberasturi

Hi Team,

We are trying to connect to postgres db server that has SSL configuration from WAS. We were provided with root.crt, client.crt, client.pk8 and client.key for successful ssl handshake.
We were able to import client.crt and root.crt into truststore but not able to provide keys since they are in different format that is not recognized by Was. 

Could you please help us in this regard?

Thanks,

Neelima