Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Key stores allow you to manage the keys that are stored in a database. WSO2 Carbon Key store management provides the ability to manage multiple Key stores. You can add a Key store using UI configuration. For more information, see Key stores.

Follow the instructions below to add a new Key store in WSO2 Identity Server.

  1. Sign in. Enter your user name and password to log on to the Management Console.
  2. Click the "Configure" button to access the "Configure" menu.
    Image RemovedImage Added
  3. From the "Configure" menu, select "Key Stores."
  4. The "Key Store Management" page appears. Click on the "Add New Key store" link.
    Image RemovedImage Added
  5. Locate the Key store file you want to add on the "Add New Key store" page.
    Image RemovedImage Added

    Info

    You can use the "Browse" button to locate a file.
    Image RemovedImage Added

  6. Specify the "Provider" and the "Key store Password," which points to the password required to access the private key.
    Image RemovedImage Added
  7. Select "Key store Type" from the drop-down menu.
    WSO2 Identity Server supports two types of Key stores:
    • JKS (Java Key Store) - Allows you to read and store key entries and certificate entries. However, the key entries can store only private keys.
    • PKCS12 (Public Key Cryptography Standards) - Allows you to read a Key store in this format and export the information from that Key store. However, you cannot modify the Key store. This is used to import certificates from different browsers into your Java Key store.
    Image RemovedImage Added
  8. Click on the "Next" button to proceed.
    Image RemovedImage Added
  9. On the next page, provide the "Private Key Password."

    Info

    Key store management does not let you import an existing private key for which you already have a certificate.

    Image RemovedImage Added

  10. Click "Finish" to add a new Key store to the list.

    Info

    The default wso2carbon.jks Key store cannot be deleted.

...