Path: csiph.com!x330-a1.tempe.blueboxinc.net!feeder1.hal-mli.net!news.glorb.com!news-out.readnews.com!news-xxxfer.readnews.com!news-out.news.tds.net!newsreading01.news.tds.net!86597e80!not-for-mail From: "Roedy Green" Subject: Re: Loading keystores fro Message-ID: X-Comment-To: comp.lang.java.security Newsgroups: comp.lang.java.security In-Reply-To: <4885cbea-fff1-46fb-96c2-002b1b2b64f2@p25g2000hsf.googlegroups.com> References: <4885cbea-fff1-46fb-96c2-002b1b2b64f2@p25g2000hsf.googlegroups.com> Content-Type: text/plain; charset=IBM437 Content-Transfer-Encoding: 8bit X-Gateway: time.synchro.net [Synchronet 3.15a-Win32 NewsLink 1.92] Lines: 31 Date: Wed, 27 Apr 2011 16:08:26 GMT NNTP-Posting-Host: 96.60.20.240 X-Complaints-To: news@tds.net X-Trace: newsreading01.news.tds.net 1303920506 96.60.20.240 (Wed, 27 Apr 2011 11:08:26 CDT) NNTP-Posting-Date: Wed, 27 Apr 2011 11:08:26 CDT Organization: TDS.net Xref: x330-a1.tempe.blueboxinc.net comp.lang.java.security:150 To: comp.lang.java.security On Tue, 29 Jul 2008 06:40:21 -0700 (PDT), Thomaspantalacci311@hotmail.com wrote, quoted or indirectly quoted someone who said : >I think the problem is the client certificate is not found in java >keystore. In the smartcard, I have 2 certificates: one for >authenticate, and the other for sign. How could i proceed to load the >both certificates from the smartcard, using java.security.KeyStore ? >(actually l can load only signature certificate) >Note that i have a pkcs11 provider. First get rid of the complication of the smartcard by copying your keystore to hard disk. Then have a read up on keytool for all the things you can do with it. see http://mindprod.com/jgloss/keytoolexe.html Keytool has a big restriction. It will never export a private key. You have to use the private keys on the certs inside the keystore. -- Roedy Green Canadian Mind Products The Java Glossary http://mindprod.com --- * Synchronet * The Whitehouse BBS --- whitehouse.hulds.com --- check it out free usenet! --- Synchronet 3.15a-Win32 NewsLink 1.92 Time Warp of the Future BBS - telnet://time.synchro.net:24