A truststore file is a key database file that contains public keys. The public key is stored as a signer certificate. The keys are used for a variety of purposes, including authentication and data integrity. In WebSphere Application Server, adding truststore files to the configuration is different between client and server. For the client, a truststore file is added to a property file, like the sas.client.props file. For the server,
a truststore file is added through the WebSphere Application Server administrative console.
Before you add the truststore file to your configuration, ask the following questions:
If you configure for client authentication using digital certificate,
has the public key of the client personal certificate been imported as a signer certificate into the server truststore file?
Does the truststore file contain all the required signer certificates with respect to the keystore files of the target servers?
Add a truststore file into a client configuration, by editing the sas.client.props file and setting the following properties:
com.ibm.ssl.trustStoreType for the truststore format. Range: JKS
(default), PKCS12, JCEK, JCERACFKS.
com.ibm.ssl.trustStore for a fully qualified path to the truststore file. The truststore file contains the public keys.
com.ibm.ssl.trustStorePassword for the password to access the truststore file.
Add a truststore file into a server configuration: