/portecle

User friendly GUI application for creating, managing and examining keystores, keys, certificates, certificate requests, certificate revocation lists and more

Primary LanguageJavaGNU General Public License v2.0GPL-2.0

Portecle CI status Download

Portecle is a user friendly GUI application for creating, managing and examining keystores, keys, certificates, certificate requests, certificate revocation lists and more.

Currently, Portecle can be used to, for example:

  • Create, load, save, and convert keystores.
  • Generate DSA and RSA key pair entries with self-signed X.509 certificates.
  • Import X.509 certificate files as trusted certificates.
  • Import key pairs from PKCS #12 files.
  • Clone and change the password of key pair entries and keystores.
  • View the details of certificates contained within keystore entries, certificate files, and SSL/TLS connections.
  • Export keystore entries in a variety of formats.
  • Generate and view certification requests (CSRs).
  • Import Certificate Authority (CA) replies.
  • Change the password of key pair entries and keystores.
  • Delete, clone, and rename keystore entries.
  • View the details of certificate revocation list (CRL) files.

Getting up and running with Portecle is quick and easy. Everything you need to know is detailed below. Being written in Java, Portecle will run on any machine that has a suitable Java runtime environment installed.

You can access the online help of Portecle from within the Portecle GUI, or online at http://portecle.sourceforge.net/#docs

Installing

First, you'll need a suitable Java runtime environment installed. Java SE version 7 or later is required; see for example https://www.oracle.com/technetwork/java/index.html and https://openjdk.java.net/ for available versions and install instructions.

Apart from Java, the default binary distribution of Portecle contains everything you'll need to run it. The easiest way to install it is to unzip the binary distribution to a directory somewhere on your filesystem.

The binary distribution contains the Portecle jar file (portecle.jar) as well as Bouncy Castle provider and PKIX jars (bcprov.jar, bcpkix.jar) for Java SE 7. If you wish to run Portecle with a later Java version, or update the bundled Bouncy Castle jars for some other reason, simply download an update for your version of Java from https://www.bouncycastle.org/ and place the jars into the same directory as portecle.jar with the names bcprov.jar and bcpkix.jar, overwriting the existing one already there (if any). The binary distribution also contains icons for use with Portecle.

Portecle can additionally use the GNU Classpath (version 0.90 or later) security providers if they are installed. Support for GNU Keyring (GKR) keystores requires these providers. For more information about GNU Classpath, see https://www.gnu.org/software/classpath/

Depending on your Portecle usage patterns, the Bouncy Castle provider may require the JCE unlimited strength jurisdiction policy files installed to function properly. See "IMPORTANT NOTES" at https://www.bouncycastle.org/documentation.html. Failures related to lack of these policy files usually manifest themselves as errors loading keystores with an error message like "Unsupported keysize or algorithm parameters" or "Illegal key size" when trying to import keys.

The default way of running Portecle uses the java -jar method, which means that the Class-Path defined in portecle.jar's MANIFEST.MF will be used to locate all classes. You can also invoke Portecle by its "main" class, net.sf.portecle.FPortecle. This method allows you to use a Bouncy Castle provider jar elsewhere on your filesystem.

The following chapters contain examples how to run Portecle; all of the examples assume that the JRE/JDK bin directory has been added to your PATH environment variable.

Windows Command Line

Assuming you have an appropriate JRE/JDK installed and have placed the Portecle and Bouncy Castle provider JAR files into a directory c:\java you can run Portecle like so:

java -jar c:\java\portecle.jar

In most setups, if portecle.jar, bcprov.jar, and bcpkix.jar were installed as instructed above, Portecle can also be run by double-clicking portecle.jar in the Windows Explorer.

If you wish to manage the jar locations yourself, use Java's -cp option for that, and net.sf.portecle.FPortecle as the class to launch.

UNIX Command Line

Assuming you have an appropriate JRE/JDK installed and have placed the Portecle and Bouncy Castle provider jar files into a directory /usr/share/java you can run Portecle like so:

java -jar /usr/share/java/portecle.jar

If you wish to manage the jar locations yourself, use Java's -cp option for that, and net.sf.portecle.FPortecle as the class to launch.

Experimental Features

Portecle releases may contain experimental features that are not enabled by default. These have known limitations or incomplete implementations that make them unsuitable for production use, but they may be valuable for early adopters. To enable these features, use -Dportecle.experimental=true in your Portecle invocation command line. See the file NEWS.txt for information about status of current experimental features.

Copyright and License

Copyright © 2004 Wayne Grant, 2004 Mark Majczyk, 2004-2019 Ville Skyttä

Portecle is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

Portecle is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with Portecle, see the file LICENSE.txt; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA

Contact

For contact information and issue tracking facilities, see Portecle's project pages at: