Add new attachment

Only authorized users are allowed to upload new attachments.

This page (revision-18) was last changed on 25-Oct-2018 04:31 by Ben Spink

This page was created on 25-Oct-2018 04:31 by Ben Spink

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Difference between version and

At line 1 changed 3 lines
Here is an example on how to make a java keystore for SSL in CrushFTP.
*Apache - If you already have a certificate for Apache, you may be able to convert it to a Java keystore and use it with CrushFTP. I provide this information untested, but it in theory looks like it would work. [http://www.ks.uiuc.edu/Research/biocore/localServer/install/installCert.shtml] or [http://portecle.sourceforge.net/]
!__Starting from the beginning :__
\\
\\
![Use Portecle's GUI to make a Keystore|Portecle] <---click here
\\
\\
\\
\\
\\
----
!__Renewing a certificate :__
\\
\\
![Use Portecle's GUI to make a Keystore|Portecle] <---click here
\\
\\
\\
\\
\\
----
Alternate methods for bringing in a cert from another server:
----
*Apache - If you already have a certificate for Apache, follow these [instructions|openssl_key_convert] for converting it.
----
At line 5 removed 2 lines
*Java - I purchased a cheap chained certificate from GoDaddy. I chose the "Tomcat" type of certificate as CrushFTP works the same way as tomcat does for certificates. I substituted "crushftp" instead of "tomcat" though. It really doesn't matter however.
At line 8 changed one line
!__Easier GUI Method : [Use Portecle's GUI to make a Keystore|Portecle]__
*OS X Server - Export the private key using keychain. You will need to run keychain using root access to be able to export the certificate.
{{{
sudo "/Applications/Utilities/Keychain Access.app/Contents/MacOS/Keychain Access"
}}}
Then use Portecle to add in the missing certificate that go along with the chain to trust the private key's signature. For GoDaddy, that means downloading the valicert, cross and intermediate cert.
At line 33 added 6 lines
These below instructions are complicated and shouldn't be used unless you just can't stand using Portecle for some strange reason.
*Java - When purchasing a certificate from a cert authority, be sure to choose 'Tomcat' for the format.
At line 16 changed one line
keytool -genkey -keysize 2048 -alias crushftp -keyalg RSA -keystore crushftp.keystore
keytool -genkey -keysize 2048 -alias crushftp -keyalg RSA -keystore crushftp.jks
At line 54 changed one line
keytool -certreq -keyalg RSA -alias crushftp -file crushftp.csr -keystore crushftp.keystore
keytool -certreq -keyalg RSA -alias crushftp -file crushftp.csr -keystore crushftp.jks
At line 64 changed one line
WARNING! Keep your "crushftp.keystore" file! (Make a backup of it just in case you make a mistake in step 3.) You must have this original keystore file to apply the signed certificate GoDaddy gives back.
WARNING! Keep your "crushftp.jks" file! (Make a backup of it just in case you make a mistake in step 3.) You must have this original keystore file to apply the signed certificate GoDaddy gives back.
At line 77 changed one line
[https://certificates.starfieldtech.com/Repository.go]
[https://certs.godaddy.com/anonymous/repository.seam]
At line 87 changed one line
keytool -import -alias root -keystore crushftp.keystore -trustcacerts -file valicert_class2_root.crt
keytool -import -alias root -keystore crushftp.jks -trustcacerts -file valicert_class2_root.crt
At line 90 changed one line
keytool -import -alias cross -keystore crushftp.keystore -trustcacerts -file gd_cross_intermediate.crt
keytool -import -alias cross -keystore crushftp.jks -trustcacerts -file gd_cross_intermediate.crt
At line 93 changed one line
keytool -import -alias intermed -keystore crushftp.keystore -trustcacerts -file gd_intermediate.crt ]
keytool -import -alias intermed -keystore crushftp.jks -trustcacerts -file gd_intermediate.crt ]
At line 99 changed one line
keytool -import -alias crushftp -keyalg RSA -keystore crushftp.keystore -trustcacerts -file www.crushftp.com.crt
keytool -import -alias crushftp -keyalg RSA -keystore crushftp.jks -trustcacerts -file www.crushftp.com.crt
Version Date Modified Size Author Changes ... Change note
18 25-Oct-2018 04:31 5.769 kB Ben Spink to previous SSL ==> SSL_CLI
17 25-Oct-2018 04:31 5.769 kB Ben Spink to previous | to last
16 25-Oct-2018 04:31 5.637 kB Ben Spink to previous | to last
15 25-Oct-2018 04:31 5.4 kB Ben Spink to previous | to last
14 25-Oct-2018 04:31 5.401 kB Ben Spink to previous | to last
13 25-Oct-2018 04:31 5.406 kB Ben Spink to previous | to last
12 25-Oct-2018 04:31 5.436 kB Ben Spink to previous | to last
11 25-Oct-2018 04:31 5.525 kB Ben Spink to previous | to last
10 25-Oct-2018 04:31 5.398 kB Ben Spink to previous | to last
9 25-Oct-2018 04:31 5.36 kB Ben Spink to previous | to last
8 25-Oct-2018 04:31 5.356 kB Ben Spink to previous | to last
7 25-Oct-2018 04:31 5.35 kB Ben Spink to previous | to last
6 25-Oct-2018 04:31 5.3 kB Ben Spink to previous | to last
5 25-Oct-2018 04:31 5.262 kB Ben Spink to previous | to last
4 25-Oct-2018 04:31 5.197 kB Ben Spink to previous | to last
3 25-Oct-2018 04:31 5.027 kB Ben Spink to previous | to last
2 25-Oct-2018 04:31 4.954 kB Ben Spink to previous | to last
1 25-Oct-2018 04:31 6.147 kB Ben Spink to last
« This page (revision-18) was last changed on 25-Oct-2018 04:31 by Ben Spink
G’day (anonymous guest)
CrushFTP9 | What's New

Referenced by
SSL

JSPWiki