Adding Key Stores

Key stores allow you to manage the keys that are stored in a database. WSO2 Carbon Key store management provides the ability to manage multiple Key stores. You can add a Key store using UI configuration. For more information, see Key stores.

Follow the instructions below to add a new Key store in WSO2 Identity Server.

1. Sign in. Enter your user name and password to log on to the Management Console as described here for Windows users and here for Linux users.

2. Click the "Configure" button to access the "Configure" menu.

3. From the "Configure" menu, select "Key Stores."

4. The "Key Store Management" page appears. Click on the "Add New Key store" link.

5. Locate the Key store file you want to add on the "Add New Key store" page.

6. Specify the "Provider" and the "Key store Password," which points to the password required to access the private key.

7. Select "Key store Type" from the drop-down menu.

WSO2 Identity Server supports two types of Key stores:

• JKS (Java Key Store) - Allows you to read and store key entries and certificate entries. However, the key entries can store only private keys.
• PKCS12 (Public Key Cryptography Standards) - Allows you to read a Key store in this format and export the information from that Key store. However, you cannot modify the Key store. This is used to import certificates from different browsers into your Java Key store.

8. Click on the "Next" button to proceed.

9. On the next page, provide the "Private Key Password."

10. Click "Finish" to add a new Key store to the list.