I am trying SSL implementation using apache tomcat.
There are 3 certificates. root.crt, intermediate.crt and CA.crt
I have imported root and intermediate certificates using following commands:
keytool -import -alias rootCA -keystore /jira/jira-home-7.12.1/jira.jks -trustcacerts -file root.crt
keytool -import -alias intermediateCA -keystore /jira/jira-home-7.12.1/jira.jks -trustcacerts -file intermediate.crt
When third certificate is imported using command:
keytool -import -alias jira -keystore /jira/jira-home-7.12.1/jira.jks -file CA.crt
An error is thrown as:
Public keys in reply and keystore don't match
How can I resolve the issue. It needs certificate to be added in the truststore.
I have tried with a command :
keytool -import -keystore /jira/jira-installation-7.12.1/jre/lib/security/cacerts -file root.crt -alias rootCA
but it didn't help.
I understand that you want setup SSL to your Jira instance, the error Public keys in reply and keystore don't match is caused by generating a certificate with a different key pair. With that in mind, you need to generate it again but using the same original key pair to avoid this error.
On the page Running Jira over SSL or HTTPS, you can follow all necessary steps to accomplish that.