...
- Get a copy of the
client-truststore.jksfile from the<PRODUCT_HOME>/repository/resources/security/directory. Export the public key from your .jks file using the following command.
Code Block language powershell keytool -export -alias certalias -keystore newkeystore.jks -file <public key name>.pem
Import the public key you extracted in the previous step to the
client-truststore.jksfile using the following command.Code Block language powershell keytool -import -alias certalias -file <public key name>.pem -keystore client-truststore.jks -storepass wso2carbon
Note Note that 'wso2carbon' is the keystore password of the default client-truststore.jks file.
Now, you have an SSL certificate stored in a Java keystore and a public key added to the client-truststore.jks file. Note that both these files should be in the <PRODUCT_HOME>/repository/resources/security/ directory. You can now replace the default wso2carbon.jks keystore in your product with the newly created keystore by updating the relevant configuration files in your product. See the related links for information.
Related links
...
For information on the concepts of keystores and about how keystores are used in WSO2 products
...
, see Setting up Keystores, and for information on how to update configuration files for keystores in WSO2 products, see Configuring Keystores in WSO2 Products.
...