Unable to renew - no certs found

Many thanks! I get

keytool error: java.io.IOException: Keystore was tampered with, or password was incorrect

so I’m guessing it could just be a typo in my password. I really appreciate the help

@apease, maybe you should repeat the process, this time writing the password carefully :wink:

indeed! :slight_smile:

1 Like

So it turned out that it was just my confusion with the fact that in generating the key two passwords are requested when executing

sudo keytool -genkey -alias tomcat -keyalg RSA -keystore ~/.keystore -keysize 2048

but must be the same for the tomcat parameter as well as the keystore itself. I had wrongly remembered that I could keep a secure password for the keystore and have a low-security password supplied for tomcat, since they inexplicably require that to be kept in clear text in the tomcat configuration file. Being able to run

keytool -list -v -keystore /path/to/keystore

since “cerbot certificates” didn’t work for a --csr certificate was key in figuring this out. Many thanks for all your help!

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.