I recently had a bad experience with a code-signing certificate in a PKCS#11 e-token that had an alias that contained invalid characters. This made all command-line tools unusable. All I had to do was to "fix" the alias without using a command-line tool. I finally figured out how to programmatically get the "bad" alias string and then pass it directly to Java's keytool class (in the JDK) to successfully invoke the -changealias function of the tool.
I would be great if I could instead have used KeyStore Explorer to do this.
I recently had a bad experience with a code-signing certificate in a PKCS#11 e-token that had an alias that contained invalid characters. This made all command-line tools unusable. All I had to do was to "fix" the alias without using a command-line tool. I finally figured out how to programmatically get the "bad" alias string and then pass it directly to Java's
keytool
class (in the JDK) to successfully invoke the-changealias
function of the tool.I would be great if I could instead have used KeyStore Explorer to do this.