Let's say you have deployed an application to a WebSphere application server and the application needs to make a secured connection to a remote system. 

In this scenario, there will be a certain certificate that will be used to make a secured SSL connection to the remote system, and the certificate can be obtained and imported into the truststore being used by the WebSphere application server.

1. In the WebSphere admin console, expand Security and select SSL certificate and key management.
2. Select key stores and certificates.
3. Select NodeDefaultTrustStore.
4. Select Signer certificates.
5. Select Retrieve from port.
6. In Host, enter the hostname of the remote system.
7. In Port, enter the port that is used to connect to the remote system.
8. SSL configuration for outbound connection will almost always be NodeDefaultSSLSettings.
9. Alias can be anything you want, typically the alias of the certificate.
10. Select Retrieve signer information.

If the remote system is able to provide the certificate that should be used to provided a secured connection, the certificate should be displayed. In this scenario, select OK to add the certificate to the NodeDefaultTrustStore.