Signer certificates establish the trust relationship in SSL communication.
You can extract the signer part of a personal certificate from a keystore,
and then you can add the signer certificate to other keystores.
Before you begin
The keystore that you want to add the signer certificate to must already
exist.
About this task
Complete the following steps in the administrative console:
Procedure
- Click Security > SSL certificate and key management > Manage
endpoint security configurations > Inbound | Outbound > SSL_configuration_name >
Key stores and certificates.
- Select a keystore from the list of keystores.
- Click Add signers.
- Enter an alias for the signer certificate in the Alias field
- Enter the full path to the signer certificate file in the File
name field.
- Select a data type from the list in the Data type field.
- Click Apply.
Results
When these steps are completed, the signer from the certificate file
is stored in the keystore. You can see the signer in the keystore files list
of signer certificates. Use the keystore to establish trust relationships
for the SSL configurations.