I'm trying to get SSL to work. I have a certificate for my domain (signed by DigiCert, I believe) and I've download the root certificates from DigiCert, specifically the High Assurance CA-3 certificate and High Assurance EV Root CA certificate. I imported them to my keystore using a command similar to:
keytool -import -trustcacerts -alias highassuranceca3 -file DigiCertHighAssuranceEVRootCA.crt -keystore my_keystore.jks
Then I copy the keystore to my OpenFire base directory and restart the server.
When I go to Server Settings -> Server Certificates, I see the certificates I added there and my domain certificate seems fine and says "CA Signed" for it's status but the other (digicert) certificates always say "Pending Verification" and have a dialog box for "Certificate Authority Reply". No matter what I do, they always say "Pending Verification". I've tried importing them without the -trustcacerts options. I've tried importing the entrust ceritifcates and I always have the same problem. What can I do??