...
Since wso2carbon.jks is built into open source WSO2 products, anyone can access the private keys of the default keystore. Therefore, it is recommended to replace this with a keystore with self-signed or CA-signed certificates when deploying in production.
The WSO2 Identity Server allows you to add a Key store, view a Key store, and import a certificate for a Key store.
...