Extract PKCS12 file from Java Keystore while changing the password using keytool
I have a Java Keystore: myKeystore.jks, and given an alias : someAlias, I'm trying to extract the corresponding resource in a p12 format while changing the password.
The JKS password is 12345678 which is the same password as the someAlias key.
I want my p12 file to be protected with the new password : 1122334455
What I've tried :
keytool -importkeystore -srckeystore myKeystore.jks -destkeystore test.p12 -deststoretype PKCS12 -srcalias someAlias -srcstorepass 12345678 -deststorepass 1122334455
In this case the test.p12 is exported, but I'm unable to read it because either the password is incorrect OR the file is corrupted.
But when I try this (Keeping the same password) :
keytool -importkeystore -srckeystore myKeystore.jks -destkeystore test.p12 -deststoretype PKCS12 -srcalias someAlias -srcstorepass 12345678 -deststorepass 12345678
I can open my test.p12 file with the given password.
P.S : I also tried to add the -srckeypass argument, but no luck.
P.S 2 : I'm using keystore explorer 5.11 to open my stores
What am I missing ?
You have only changed the password of the keystore with the first command. The password for the key is still 12345678.
While it is possible for PKCS#12 to have different passwords for container/content, it is a bad idea because most applications assume that the passwords are equal (which is the reason why KeyStore Explorer shows that error message).
To change the password for the key you have to add -destkeypass:
keytool -importkeystore -srckeystore myKeystore.jks -destkeystore myKeystore.p12
-deststoretype PKCS12 -srcalias someAlias -srcstorepass 12345678 -deststorepass
1122334455 -destkeypass 1122334455
BTW, since Java 8 keytool shows an error message for your command:
keytool error: java.lang.Exception: The destination pkcs12 keystore has different storepass and keypass. Please retry with -destkeypass specified.
- org.hibernate.query.SemanticException: Could not resolve attribute
- Can I delay a stubbed method response with Mockito?
- How can I combine instanceof and cast in Java?
- Hibernate: flush() and commit()
- Java GMT display
- Retrieve result of StoredProcedure that has NO out parameter
- Jena's getLocalName doesn't return numeric localname with Turtle
- Parse meta tag and get HTML content from body with Tika
- Best way to compare dates in Android
- Merging cells in Excel using Apache POI
- Months elapsed function not giving proper result
- Unit test IOException with Java, JUnit and Mockito
- How to handle asynchronous thread processing with same transaction in SpringBoot?
- Navigating the file system with netbeans is VERY slow
- Spring caching works "live" but not in tests
- How can I compare two Calendar dates?
- Error: module not found for Apache Commons Math (commons-math3) when using Gradle and Java modules
- Why do Java 2D arrays allow holding rows larger than their specified size?
- Flattening nested attributes in Jackson
- org.apache.commons.logging.LogFactory was unintentionally initialized at build time
- NavigationView menu items with actionLayout. How can I set those action layout's attribute for each item?
- Is there a difference between single and double quotes in Java?
- Process, map, and collect objects in one stream call
- Build jvm without jdk
- java stream Collectors without mapper?
- Adding Subtype to generic List
- How to read a text-file resource into Java unit test?
- Strange behaviour of ww SimpleDateFormat
- How to convert a java Map to immutable Scala map via java code?
- Multiple buttons in single page navigating each button to different page in android studio