keytool commands to replace existing SSL certificate?

certificate tls

I've a linux centos server running glassfish 3.1.2 app server. The default certs coming from GlassFish install for ports 4848 and 8181 are 1024 bits. I need to replace these with 2048 bits versions. Looking for help to create the keytool command line code that does this.

I located the certs here:

# keytool -list -keystore keystore.jks
   Keystore type: JKS
   Keystore provider: SUN
   Your keystore contains 2 entries
   glassfish-instance, Feb 7, 2012, PrivateKeyEntry, 
   Certificate fingerprint (SHA1): 40:...:46
   s1as, Feb 7, 2012, PrivateKeyEntry, 
   Certificate fingerprint (SHA1): 3C:...:FC

Here you go, I always keep this page bookmarked as a reference, The Most Common Java Keytool Keystore Commands.

So you'll need to delete the certificate before you can re-add it. From the above page:

Delete a certificate from a Java Keytool keystore

  • keytool -delete -alias mydomain -keystore keystore.jks

Related

Is there a way to close the lid on a MacBook without putting it sleep?
What is 'IMAP+'?
How do you search for tabs in the linux command less?
How do I paste into the "crosh" terminal in a Chromebook?
Why can't I create soft link on vboxsf file system?
Why doesn't Windows 8 prompt me "Yes" or "No" when I delete a File/Folder on the Desktop?
Is it possible to make text strikethrough while sending instant messaging in skype?
How to copy and paste without overwriting in Excel
Reorder email accounts in Thunderbird
Unable to start a Linux VM in VirtualBox with a "Kernel driver not installed (rc=-1908)" error on macOS even if VirtualBox is reinstalled
Google Remote Desktop: copy paste not working
How do I find which software is doing an SSH connection?