[16.0.0.3 and later]

Setting up third-party certificates while creating a new collectives

You can set up a collective with a third-party certificate that exists.

About this task

To set up a collective with third-party certificates, you need to change keystore and truststore. The keystore and truststore that needs to be changed are displayed in the following image:

A diagram that displays the collective keystores that need to be changed

Procedure

  1. Create a controller. For more information, see Configuring a Liberty collective in the product documentation.
  2. Create a personal certificate for the controller.
  3. Remove the certificates in key.jks and serverIdentity.jks. Replace the certificates with the personal certificate that you created in the previous step.
  4. Remove all the certificates in trust.jks and collectiveTrust.jks. and replace with the signers of the certificates in key.jks and serverIdentity.jks.
  5. Add the signers of the personal certificates that you create for your members to trust.jks and collectiveTrust.jks.
  6. Start the controller.

Icon that indicates the type of topic Task topic



Timestamp icon Last updated: Friday, 16 September 2016
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-libcore-mp&topic=twlp_collect_setup_third_exist
File name: twlp_collect_setup_third_exist.html