today I wanted to install our new CA-signed SSL certificate into Openfire Server. So after the first failed try&error way, I found the documentation that explains me how complicated SSL seems to be with Java. I changed the keystore password, imported the signed certificate (which must be alone in that file, it seems) and updated the Openfire settings. After a restart, port 5223 is closed and the Web interface is broken:
What can I do to make it work again? Currently, I’‘m offline from the XMPP server and the web interface. All that’'s left is SSH and MySQL.
PS: The certificate, together with the private key, work fine with Apache, Exim, Courier-IMAP and ProFTPd. There’‘s no intermediate certificate as I was told Java wouldn’'t support that.