APAR status
Closed as program error.
Error description
Error Message: keytool error: Input not an X.509 certificate . Stack Trace: N/A .
Local fix
The workaround is converting the input to ASCII
Problem summary
I am trying to import a server CA certificate (generated on z/OS) to the client under USS on the same system using the following command: hwkeytool -importcert -file db.cacert -trustcacerts -keystore myTrustStore -alias db_ca and got the exception: keytool error: java.lang.Exception: Input not an X.509 certificate However, when I import the same CA certificate to a Windows machine, the import worked successfully.
Problem conclusion
This defect will be fixed in: 6.0.0 SR12 6.0.1 SR4 7.0.0 SR3 5.0.0 SR15 . Add support for reading EBCDIC certificates in addition to ASCII certificates to hwkeytool.
Temporary fix
Comments
APAR Information
APAR number
IV27934
Reported component name
JAVA 5 SECURITY
Reported component ID
620500125
Reported release
500
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2012-09-13
Closed date
2012-09-13
Last modified date
2012-09-13
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
JAVA 5 SECURITY
Fixed component ID
620500125
Applicable component levels
R500 PSY
UP
Rate this page:
Average rating
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.