This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Adding Key Stores

Key stores allow to manage the keys that are stored in a database. WSO2 Carbon Key store management provides the facility to manage multiple Key stores. You can add a Key store either using UI configuration or XML configuration. For more information see Key Stores.

Follow the instructions below to add a new Key store in WSO2 ESB.

1. Sign in. Enter your user name and password to log on to the ESB Management Console.

2. Click the "Configure" button to access the "Configure" menu.

3. From the "Configure" menu, select "Key Stores."

4. The "Key Store Management" page appears. Click on the "Add New Key store" link.

WSO2 Carbon key store management

5. Locate the Key store file you want to add in the "Add New Key store" page.

WSO2 Carbon key store management

Tip

You can use the "Browse" button to locate the file.

6. Specify "Provider" and "Key store Password," which points to the password required to access the private key.

WSO2 Carbon key store management

7. Select "Key store Type" from the drop-down menu.

WSO2 ESB supports two types of Key Stores:

  • JKS (Java Key Store) - Allows to read and store key entries and certificate entries. However, the key entries can store only private keys.
  • PKCS12 (Public Key Cryptography Standards) - Allows to read a Key store in this format and can export the information from that key store, but you cannot modify the Key store. This is used to import the certificates from different browsers into your Java Key store.

WSO2 Carbon add new key store

8. Click on the "Next" button to proceed.

9. In the next page, provide "Private Key Password."

Note

Key store management does not let you import an existing private key for which you already have a certificate.

10. Click "Finish" to add a new Key store to the list.

Note

The default wso2carbon.jks Key store cannot be deleted.