How can I create a CSR without a warning message from the keytool command?

Solution Unverified - Updated -

Issue

When creating a CSR to enable one-way SSL/TLS for Applications in JBoss EAP 7, the following warning message is shown from keytool command. How can I create a keystore without the warning message?

$ keytool -genkeypair -keystore server.jks -dname "CN=test.support.redhat.com, O=Red Hat, C=JP" -alias server -keyalg RSA -keysize 2048 -validity 365

Warning:
The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore server.jks -destkeystore server.jks -deststoretype pkcs12".

$ keytool -certreq -keystore server.jks -alias server -file server.csr -ext SAN="DNS:test.support.redhat.com,DNS:www.test.support.redhat.com"

Warning:
The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore server.jks -destkeystore server.jks -deststoretype pkcs12".

Environment

  • OpenJDK / Oracle JDK
    • 8u151 or later
  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 7.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content