If you are unfamiliar with the difference between a keystore and a truststore, check out this article.

1. In the WebSphere admin console, expand Security and select SSL certificate and key management.
2. Select SSL configurations.
3. Select key stores and certificates.
4. Select New.
5. Complete the form to create a new truststore. In path, you will usually enter something along the lines of ${CONFIG_ROOT}/cells/cell01/example.p12. On Linux, ${CONFIG_ROOT} would be something like /opt/IBM/WebSphere/AppServer/profiles/your_profile/config/cells/.

In this example, a truststore named myTrustStore was created. The keytool command can be used to view the certificates in the truststore.

After creating a new truststore, you will probably want to configure a scope to use the truststore.