Personal certificates contain a private key and a public
key. You can extract the public key, called the signer certificate,
to a file, then import the certificate into another keystore. The
client requires the signer portion of a personal certificate for Security
Socket Layer (SSL) communication.
Before you begin
The keystore that contains a personal certificate must already
exist.
Alternative Method: To extract
a signer certificate from a personal certificate using the wsadmin
tool, use the extractCertificate command of the AdminTask object.
For more information, see the PersonalCertificateCommands
command group for the AdminTask object article.
About this task
Complete the following steps in the administrative console:
Procedure
- Click Security > SSL certificate and key management >
Manage endpoint security configurations > {Inbound | Outbound} > ssl_configuration >
Key stores and certificates > keystore .
- Under Additional Properties, click Personal certificates.
- Select a personal certificate.
- Click Extract.
- Type the full path for the certificate file name. The
signer certificate is written to this certificate file.
- Select a data type from the list.
- Click Apply.
Results
The signer portion of the personal certificate is stored in
the file that is provided.
What to do next
This signer can now be imported into other keystores.