+

Search Tips   |   Advanced Search

 

Add a signer certificate to a keystore

 

Signer certificates establish the trust relationship in SSL communication. You can extract the signer part of a personal certificate from a keystore, and then you can add the signer certificate to other keystores. The keystore to add the signer certificate to must already exist.

 

Overview

Complete the following steps in the console:

 

Procedure

  1. Click Security > SSL certificate and key management > Manage endpoint security configurations > Inbound | Outbound > SSL_configuration_name > Key stores and certificates.

  2. Select a keystore from the list of keystores.

  3. Click Add signers.

  4. Enter an alias for the signer certificate in the Alias field

  5. Enter the full path to the signer certificate file in the File name field.

  6. Select a data type from the list in the Data type field.

  7. Click Apply.

 

Results

When these steps are completed, the signer from the certificate file is stored in the keystore. You can see the signer in the keystore files list of signer certificates. Use the keystore to establish trust relationships for the SSL configurations.

 

What to do next

To add a signer certificate to a keystore by using the wsadmin tool, use the addSignerCertificate command of the AdminTask object. For more information, see PersonalCertificateCommands command group for the AdminTask object.



Add signer certificate

Signer certificates collection

Signer certificate settings

 

Related concepts


Keystore configurations

 

Related tasks


Extracting a signer certificate from a personal certificate

 

Related Reference


SignerCertificateCommands command group for the AdminTask object