Supplied key (null) is not a RSAPrivateKey instance error in the Server Settings / Server Certificates screen
Description
keytool insists on storing full certificate chain when importing certificate into the keystore, therefore it is sometimes necessary to import a CA root into the certificate keystore (not only into the truststore).
After importing certficate for the key, all additional certificates (intermediary CAs, root CAs, etc.) should be deleted from the keystore
using "keytool -delete", otherwise a "Supplied key (null) is not a RSAPrivateKey instance" exception will be displayed in the Server Certificates screen.
Exception itself can be fixed easily:
Environment
None
Attachments
1
Activity
Show:
Daryl Herzmann
December 10, 2011 at 4:27 PM
r12905
Daryl Herzmann
December 10, 2011 at 4:24 PM
Thanks, will commit it.
wroot
December 10, 2011 at 12:32 PM
You can try assigning it to Daryl Herzman. I can take too long for Guus to review the patch (haven't heard from him for a while).
Marcin Cieślak
December 10, 2011 at 11:52 AM
Nope, it is not committed. Who should be the assignee?
wroot
December 10, 2011 at 9:58 AM
This is marked as Resolved. Is it already applied to the SVN?
keytool insists on storing full certificate chain when importing certificate into the keystore, therefore it is sometimes necessary to import a CA root into the certificate keystore (not only into the truststore).
After importing certficate for the key, all additional certificates (intermediary CAs, root CAs, etc.) should be deleted from the keystore
using "keytool -delete", otherwise a "Supplied key (null) is not a RSAPrivateKey instance" exception will be displayed in the Server Certificates screen.
Exception itself can be fixed easily: