Use this page to view a list of keystore objects that contain trusted root certificates. These objects are used for certificate path validation of incoming X.509-formatted security tokens. Keystore objects within trust anchors contain trusted root certificates used by the CertPath API to validate the trust of a certificate chain.
To create the keystore file, use the key tool located in the install_dir\java\jre\bin\keytool directory.
To view this administrative console page, click Servers > Application Servers > server_name. Under Additional Properties, click Web Services: Default bindings for Web Services Security > Trust Anchors.
Click New to create a new trust anchor.
Click Delete to delete a trust anchor.
If you click Update runtime, the Web services security run time is updated with the default binding information, which is contained in the ws-security.xml file that was previously saved. If you make changes on this panel, you must complete the following steps:
The value for this field is either JKS, JCEKS, PKCS11, PKCS12, JCERACFKS (z/OS only), or JCE4758RACFKS (z/OS only).