This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Adding Keystores

Keystores allow to manage the keys that are stored in a database. WSO2 Carbon Keystore management provides the facility to manage multiple Keystores. You can add a Keystore using UI configuration. For more information see Keystores.

Follow the instructions below to add a new Keystore in WSO2 Governance Registry.

1. Sign in. Enter your user name and password to log on to the Governance Registry Management Console.

2. Click the "Configure" button to access the "Configure" menu.

3. From the "Configure" menu, select "Key Stores."

4. The "Key Store Management" page appears. Click on the "Add New Key store" link.

5. Locate the Key store file you want to add in the "Add New Key store" page.

Tip

You can use the "Browse" button to locate the file.

6. Specify "Provider" and "Key store Password," which points to the password required to access the private key.

7. Select "Key store Type" from the drop-down menu.

WSO2 Governance Registry supports two types of Key stores:

  • JKS (Java Key Store) - Allows you to read and store key entries and certificate entries. However, the key entries can store only private keys.
  • PKCS12 (Public Key Cryptography Standards) - Allows you to read a Key store in this format and can export the information from that Key store, but you cannot modify the Key store. This is used to import the certificates from different browsers into your Java Key store.

8. Click "Next" to proceed.

9. In the next page, provide "Private Key Password."

Note

Keystore management does not let you import an existing private key for which you already have a certificate.

10. Click "Finish" to add a new Keystore to the list.

Note

The default wso2carbon.jks Keystore cannot be deleted.