Get a Key Pair Signed by a CA (Certificate Authority)
To get a Key Pair signed by a CA:
- First create a new KeyStore.
- Either import an existing Key Pair
into the KeyStore or generate a new Key Pair
in the KeyStore.
- Next generate a CSR (Certificate Signing Request)
file from the Key Pair.
- Send the CSR file to a CA for signing. Each CA has different
procedures for signing certificates and will charge a fee. Check the CA's web site
for details.
- The CA will send back a CA Reply. This will most likely take the form of
a file with the extension p7r or cer.
- Import the CA Reply into the original Key Pair.
- The Key Pair has now been signed by the CA.
View the Key Pair's certificate chain.
Your certificate, at the end of the chain, will contain the CA's details in the
issuer field.
- Finally save the KeyStore.
Copyright 2004 - 2013 Wayne Grant, 2013 - 2017 Kai Kramer