All the signer certificates must exist in the key database error while adding a cert into keystore

Usually the public certificate is sent in the following format:

—–BEGIN CERTIFICATE—–
MIIGGTCCBcOgAwIBAgIKIB35vgACAAAAnjANBgkqhkiG9w0BAQUFADBAMQswCQYD
VQQGEwJTRzExMC8GA1UEAxMoVEVTVFNQIEVudGVycHJpc2UgU3Vib3JkaW5hdGUg
—–END CERTIFICATE—–

You may need to save the contents into a file such as cert-base64.arm. When you add the certificate under Signer Certificates into a keystore, you may get this error “All the signer certificates must exist in the key database”. This error usually occurs when the parent certificate for the certificate authority either does not exit or has been changed. You can view the certificate path by double clicking the cert in Windows and then clicking the tab “Certificate Path”.

If the parent certificate does not exist in the keystore then you need to add the parent certificates in the same order i.e top parent cert first and then it’s children in the certificate path chain. You can save the parent certificate by selecting it in Certificate Path > View Certificate > Details > Copy to File. Save the certificates as .arm file. You can label the cert file with any name when you saving or importing the cert into keystore, but I usually prefer to keep the same name as the cert label in certificate path.

References:

http://www-01.ibm.com/support/docview.wss?uid=swg21257111

 

Advertisements

About Ishtiaque

I am IBM Certified Infrastructure Systems Architect, TOGAF 9 Certified, ITIL V3 Foundation certified and Oracle Certified Export in Java Web Component Developer with over 10 years of support and development experience in IBM middleware software and Java. Additionally, have a sound grip in databases, Linux and OpenStack administration. I hold the following certifications: IBM Certified Infrastructure Systems Architect TOGAF 9 Certified Oracle Certified Expert, Java EE6 Web Component Developer Oracle Certified Professional – Java 6 Programmer ITIL v3 Foundation Certified IBM Certified Solution Architect – Cloud Computing Infrastructure V1 IBM Certified System Administrator – WebSphere Portal V8, V7, V6.1, V6 IBM Certified System Administrator – WebSphere Application Server V7, V6.1 IBM Certified System Administrator – AIX V7 IBM Certified System Administrator – WebSphere MQ V7 IBM Certified Deployment Professional – Business Process Manager Advanced V7.5 IBM Certified Solution Advisor – Cloud Computing Architecture V3 IBM Certified Solution Developer – WebSphere Portal V5.1
This entry was posted in Security, Web Server. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s