Hi Friends,
I am bit confused around generating self signed 256 bit encryption certificate. Kindly help. This is what I did
1) Created the private key with 256 bit AES encryption by using this command on openSSL
genrsa -aes256 -out C:\ssl\certificate\privkey.key 4096
2) Create the certificate using the key generated
req -new -x509 -config C:\ssl\openssl.cnf -key C:\ssl\certificate\privkey.key -out C:\ssl\certificate\newcert.pem -days 365
3) Exported certificate and key to P12 format
pkcs12 -config C:\ssl\openssl.cnf -export -in C:\ssl\certificate\newcert.pem -inkey C:\ssl\certificate\privkey.key -out C:\ssl\certificate\newcert.p12
4) Using
java keytool, imported this P12 file to keystore
keytool -v -importkeystore -srckeystore C:\ssl\certificate\newcert.p12 -srcstoretype PKCS12 -destkeystore C:\ssl\moretry\sands.jks -deststoretype JKS
5) Configured
JBoss server.xml to pick this keystore with correct keystorePass
Now when I try to access the localhost, I am able to see the screen with certificate but the encryption still show 128 bit encryption (attached). Kindly let me know if I am missing anything.
regards,
Sandy