Lovely Systems» Blog Archive » Importing an existing SSL Certificate to Openfire

News

From 2 to 5 - We are relocated

20 Sep 2011 from Jeroen Bennenbroek

NGINX as an Amazon S3 authentication proxy

04 Mar 2011 from Bernd Dorn

Relaunch AZ Medien

13 Oct 2010 from Jeroen Bennenbroek

Plauderkasten VZ-networks

12 Apr 2010 from Jeroen Bennenbroek

The prospects for Cloud Computing are bright!

17 Mar 2010 from friedel

Snow-Sprint 2010: a diverse Outcome

18 Feb 2010 from lang

Our team needs growth

13 Jan 2010 from lang

Merry Christmas and a happy 2010

23 Dec 2009 from lang

Snowsprint 2010 - Registration opened

03 Oct 2009 from Manfred Schwendinger

Lovely Systems at EuroPython 2009

30 Jun 2009 from Andreas Feuerstein

RSS

Lovely Twitter

12 May 2007 from Jodok Batlogg, postet in sysadmin

After some trying it was easy to get openfire running with our official GoDaddy Wildcard SSL Certificate :)

Convert your key and cert to DER format (thanks to AgentBob):

openssl pkcs8 -topk8 -nocrypt -in lovelysystems.com.key -inform PEM -out lovelysystems.key.der -outform DER

openssl x509 -in _.lovelysystems.com.crt -inform PEM -out _.lovelysystems.com.crt.der -outform DER

Get some java utilities to create a java key store (yes java still rosucks, thanks to AgentBob again)

Create a new keystore (/root/keystore.ImportKey):

change the keytool passwords back to the defaults (from ‘importkey’ to ‘changeit’)

Add the GoDaddy Intermediate Certificate:

wget –no-check-certificate https://certificates.godaddy.com/repository/sf_issuing.crt
keytool -import -alias intermed -file sf_issuing.crt -keystore /root/keystore -storepass changeit -trustcacerts

Move it to openfire (probably back up the old first) and restart openfire

In case of errors: