Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (73)
EC Keys (2382)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6499)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5251)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
PKCS #12 Export Error in Portecle
Why I am getting an error: "CryptoException: Could not save keystore"? when exporting my 4096-bit key pair to a PKCS #12 file?
✍: FYIcenter.com
The main reason of getting this error in Portecle is that the key size is too big for the default security setting. See the details below:
1. Run Portecle and open "FYIcetner.jks".
2. Right mouse click on "4096-rsa-key-pair" and select "Export".
3. Select "Private Key and Certificates" as the Export Type.
4. Select "PKCS #12" as the Export Format and click OK.
5. Enter "FYIcenter" as the password for the new PKCS #12 file and click OK.
6. Enter "FYIcenter.p12" as the File Name and click "Export". You see the error message showing up: "net.sf.portecle.crypto.CryptoException: Could not save keystore - One usual suspect for this error is that the unlimited strength jurisdiction policy files for the current JRE may not be installed. Consult the JRE vendor documentation to see if those files are available for it; the directory to install them into is probably c:\Program Files\Java\jre7\lib\security."
8. Click "Details" button. You see the real JVM error: "java.io.IOException: exception encrypting data - java.security.InvalidKeyException: Illegal key size"
If you read the Java 7 documentation, you will see that JVM only allows you to manage weak keys (Key size in the range from 512 to 1024) by default.
You need download and install the "JCE Unlimited Strength Jurisdiction Policy Files".
2022-06-20, 45514👍, 7💬
Popular Posts:
Certificate summary - Owner: *.herokuapp.com, "Heroku, Inc.", L=San Francisco, ST=California, US Iss...
What tool to use to manage cert8.db and key3.db files directly? I know cert8.db and key3.db are used...
Certificate summary - Owner: *.sites.myregisteredsite .com,Domain Control Validated - RapidSSL(R), S...
Certificate summary - Owner: *.un.org, PremiumSSL Wildcard, Issued through United Nations E-PKI Mana...
How to see the list of root CA certificates used by Firefox? To see the list of root CA (Certificate...