CA Signed Cert -- Server Cert is not signed by a known CA


OpenFire latest version


Trying to install CA signed cert.

When trying to setup a client – ChatSecure on Android, I get the following error:

Server Cert is not signed by a known CA – See screenshot below.

Steps taken to install the cert.

  1. Created keystore

  2. Created CSR: keytool -genkey -keyalg RSA -keysize 2048 -keystore keystore -alias -file /opt/openfire/resources/security/mydomain.csr

  3. Got mydomain.csr signed by CA (Comodo).

  4. Next executed the following commands to import the certs

cat mydomain_net.crt > /opt/openfire/resources/security/combine.crt

vi /opt/openfire/resources/security/combine.crt (added a CRLF)

cat COMODORSADomainValidationSecureServerCA.crt >> /opt/openfire/resources/security/combine.crt

vi /opt/openfire/resources/security/combine.crt(added a CRLF)**

cat AddTrustExternalCARoot.crt >> /opt/openfire/resources/security/combine.crt

cd /opt/openfire/resources/security/

keytool -import -keystore keystore -alias -file combine.crt

/etc/init.d/openfire restart

Can someone pls point me in the right direction?

Thanks in advance.