After some trying it was easy to get openfire running with our official GoDaddy Wildcard SSL Certificate :)

Convert your key and cert to DER format (thanks to AgentBob):

• openssl pkcs8 -topk8 -nocrypt -in lovelysystems.com.key -inform PEM -out lovelysystems.key.der -outform DER

• openssl x509 -in _.lovelysystems.com.crt -inform PEM -out _.lovelysystems.com.crt.der -outform DER

Get some java utilities to create a java key store (yes java still rosucks, thanks to AgentBob again)

• ImportKey.java, ImportKey.class (Java 5) (local copy)

Create a new keystore (/root/keystore.ImportKey):

• java ImportKey lovelysystems.com.key.der _.lovelysystems.com.crt.der

change the keytool passwords back to the defaults (from ‘importkey’ to ‘changeit’)

• keytool -storepasswd -keystore /root/keystore.ImportKey
• keytool -keypasswd -alias importkey -keystore keystore.ImportKey

Add the GoDaddy Intermediate Certificate:

• wget –no-check-certificate https://certificates.godaddy.com/repository/sf_issuing.crt
• keytool -import -alias intermed -file sf_issuing.crt -keystore /root/keystore -storepass changeit -trustcacerts

Move it to openfire (probably back up the old first) and restart openfire

• mv /root/keystore.ImportKey /opt/openfire/resources/security/keystore
• /opt/openfire/bin/openfire stop
• /opt/openfire/bin/openfire start

In case of errors:

•  tail -f -n 1000 /opt/openfire/logs/error.log