This video is Part 2 of the mutual authentication/2 way SSL using Spring boot. This video is shows how to generate a JKS using Keytools and how to convert the generated pem file or .p12 certificate into JKS which then can be used for 2 way ssl.
Part 1 : Intro to mutual/2-way SSL authentication
https://youtu.be/LLASnnuOwmI
Part 3 : Configuring the keystore and truststore in Spring boot application
https://youtu.be/b6KHuJYJl3Q
Medium links
Making certificates to work across Java or Non Java platform a problem?
https://medium.com/geekculture/making-certificates-to-work-across-java-or-non-java-platform-a-problem-b2b8203fa88
Authentication using Certificates?
https://medium.com/geekculture/authentication-using-certificates-7e2cfaacd18b
Required Links
OpenSSL https://www.openssl.org/
Keytool https://docs.oracle.com/javase/8/docs/technotes/tools/windows/keytool.html
Java JDK https://openjdk.org/install/
x509 Extension Configuration Format https://man.openbsd.org/x509v3.cnf.5
KeyExplorer https://keystore-explorer.org/
Chapters
00:00 - Intro
00:42 - JKS files using Java Keytool
01:00 - Generating Server KeyStore
04:30 - Generating Client KeyStore
05:28 - Extract public cert from Server KeyStore
05:36 - Extract public cert from Client KeyStore
06:08 - Importing Client public certificate into Server TrustStore
06:33 - Importing Server public certificate into Client TrustStore
07:00 - Bottleneck of the above - reason for Certificate Authority
07:38 - Using Certificate Authority as TrustStore
08:08 - Creating Certificate Authority's PEM certificates
09:12 - Creating Server certificates
11:41 - Creating Client certificates
13:10 - Converting the above Server and Client PEM into JKS files
14:45 - Importing CA certificate into TrustStore
15:26 - Checking the generated files using KeyExplorer
Connect with me in LinkedIn at https://www.linkedin.com/in/suriya-prakhash-deenadayalan/
Visit https://www.suriyaprakhash.com for more info.
Music Credit
https://pixabay.com/music/future-bass-leonell-cassio-the-blackest-bouquet-118766/