Importing a Certification Authority (CA) Certificate

Abbreviated as CA, a Certification Authority is a trusted third-party organization or company that issues certificates used to create digital signatures and public-private key pairs. Because they guarantee that the two parties exchanging information are really who they claim to be, CA's are a critical component in data security and electronic commerce. Although the relationship between CA's is most commonly hierarchical, CA certificates can also be used to establish trust relationships between CA's in two different public key infrastructure (PKI) hierarchies. A PKI is the set of people, policies, procedures, hardware, and software used in creating, distributing, managing and using digital IDs. In all of these cases, the CA certificate is critical to defining the certificate path and usage restrictions for all end-entity certificates issued for use in the PKI.

About this task

Perform the following steps to import a CA certificate.

Procedure

  1. Open a command window.
  2. Navigate to the server, and locate the certificate file ca-cert stored in the server.
  3. Copy the ca-cert file and then navigate to the workstation where Studio is installed.
  4. Using the command window, paste the CA certificate copy in the home directory of Studio: C:\Program Files\IBM\WebSphere Cast Iron Studio x.x.x.
  5. Navigate to the security directory of Studio: C:\Program Files\IBM\WebSphere Cast Iron Studio x.x.x\security.
  6. Run the following command to import the CA certificate file into Studio: ..\jre\bin\keytool.exe -import -v -keystore cacerts -storepass changeit -file ..\castiron_ca_cert.pem -alias alias_name Where alias_name is the alias of the server CA certificate.
  7. When you are prompted for a yes or no, type yes (Y) and press Enter.
  8. Exit the command window.

Results

At the conclusion of these steps, the certificate is imported into your Studio security directory. For more information about the keytool -import command, see keytool - Key and Certificate Management Tool.



Feedback | Notices


Timestamp icon Last updated: Thursday, December 17, 2015


http://pic.dhe.ibm.com/infocenter/wci/v7r0m0/topic/com.ibm.wci.doc/SSL_import_a_certif_authority_certif.html