Can I change a keystore JKS file's alias password with only the keystore password and not the alias password?

116
June 28, 2022, at 05:10 AM

Is it possible to change a keystore alias' password without having the old. I do have the keystore's password and the alias name. If I run keytool -v -keystore my_key.jks -list I get (sensitive info replaced):

Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
Alias name: my_key
Creation date: Feb 25, 2021
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=<my info>
Issuer: CN=<my info>
Serial number: 12341234
Valid from: Thu Feb 25 13:54:04 CST 2021 until: Mon Jul 13 14:54:04 CDT 2048
Certificate fingerprints:
     SHA1: <my SHA1>
     SHA256: <my SHA256>
Signature algorithm name: SHA256withRSA
Subject Public Key Algorithm: 2048-bit RSA key
Version: 3
Extensions:
#1: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
  KeyIdentifier [my key identifier]
]

*******************************************
*******************************************

Warning:
The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore my_key.jks -destkeystore my_key.jks -deststoretype pkcs12".

Conversely, can I just delete the alias and create a new one? Will this cause any issue with Google play signing? Example of deleting:

keytool -delete \
  -alias my_key \
  -keystore my_key.jks \
  -storepass \
  -storetype PKCS12 \
  -v
Rent Charter Buses Company
READ ALSO
How to deploy apache camel application on wildfly

How to deploy apache camel application on wildfly

I developed an Apache Camel application and I want to deploy it to wildflyFrom this guide https://wildfly-extras

66
How to add a unique tag to each log in logging.properties

How to add a unique tag to each log in logging.properties

My standard configuration of Tomcat 85 splits the logs into

57
How to prevent a token created with OAuth 2.0 from expiring?

How to prevent a token created with OAuth 2.0 from expiring?

I am using the google drive API and am running into a problemI have a JAVA application that follows the documentation steps to implement the service, my problem is with the token that expires every so often

65
Let all instances of object call method at same time (java)

Let all instances of object call method at same time (java)

So I have a superclass called Tile and many subclasses like BlueTile, GreenTile etc

67