Oct 4, 2022by BehindJava

keytool error Keystore was tampered with, or password was incorrect, generate a Self Signed JKS Certificate using keytool

Home » springboot » keytool error Keystore was tampered with, or password was incorrect, generate a Self Signed JKS Certificate using keytool

springbootjava

What is a TrustStore and KeyStore?

TrustStore is used to store the public certificates into the KeyStore.
Example: google.com, Load balancer certificates

KeyStore is used to store the private certificates of client or the server.
Example: Certificate related to private information will be inside the KeyStore.

Create a Self Signed Certificate

Press windows+r and type cmd or open command prompt and type the below commands to create a certificate.
Reuse the same password i.e., “changeit” in further password prompts.

keytool -genkey -keyalg RSA -alias selfsigned -keystore keystore.jks -storepass changeit -validity 360 -keysize 2048

C:\Users\cldee>keytool -genkey -keyalg RSA -alias selfsigned -keystore keystore.jks -storepass changeit -validity 360 -keysize 2048
What is your first and last name?
  [Unknown]:  CL Deepak
What is the name of your organizational unit?
  [Unknown]:  IT
What is the name of your organization?
  [Unknown]:  Behind Java
What is the name of your City or Locality?
  [Unknown]:  Nellore
What is the name of your State or Province?
  [Unknown]:  AP
What is the two-letter country code for this unit?
  [Unknown]:  IN
Is CN=CL Deepak, OU=IT, O=Behind Java, L=Nellore, ST=AP, C=IN correct?
  [no]:  yes

Generating 2,048 bit RSA key pair and self-signed certificate (SHA256withRSA) with a validity of 360 days
        for: CN=CL Deepak, OU=IT, O=Behind Java, L=Nellore, ST=AP, C=IN

Now JKS is generated under C:\Users\cldee in windows and in MAX it is under /Users/apple.