Create a new truststore in WebSphere

Home > Search

A truststore contains certificates. In other words, this is a store of external or remote certificates that you trust, and these almost always should be certificates from a trusted certificate authority (CA). A keystore contains your own private keys and certificates. In other words, these are the keys and certificates that you own, which will be used to encrypt the traffic to your WebSphere admin console and the apps running on WebSphere.

  1. In the left panel of the WebSphere web console, expand Security and select SSL certificate and key management.
  2. Select SSL configurations.
  3. Select key stores and certificates.
  4. Select New.
  5. Complete the form to create a new truststore. In path, you will usually enter something along the lines of ${CONFIG_ROOT}/cells/cell01/example.p12. On Linux, ${CONFIG_ROOT} would be something like /opt/IBM/WebSphere/AppServer/profiles/your_profile/config/cells/.

In this example, a truststore named myTrustStore was created. The keytool command can be used to view the certificates in the truststore.

After creating a new truststore, you will probably want to configure a scope to use the truststore.

Add a Comment

We will never share your name or email with anyone. Enter your email if you would like to be notified when we respond to your comment.

Please enter in the box below so that we can be sure you are a human.