Hello All -
I'm very new to all this - forgive a potentially ignorant question.
I believe have created a keystore with the following commands
certutil -N -d .
modutil -fips true -dbdir .
I am changing my application from using JKS to NSS's keystore implementation
for FIPS compliance needs.
I have public and private keys stored in a JKS that I would like to import
into NSS's keystore.
When I run this command (with the correct passwords):
keytool -importkeystore -srckeystore /path/to/my/keystore -deskeystore NONE
-storetype PKCS11 -providerName SunPKCS11-NSS
I get this ...
Enter destination keystore password:
Enter source keystore password:
Problem importing entry for alias appserver: java.security.KeyStoreException:
token write-protected.
Entry for alias appserver not imported.
Do you want to quit the import process? [no]:
Import command completed: 0 entries successfully imported, 1 entries failed or
cancelled
Is there something else I need to do to be able to import into this store?
Anna.
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
