When you choose not to use a certificate from a trusted authority, you must download the server certificate (to each server that has a self-signed certificate) so that the AS/400 Toolbox for Java classes can use it. You also have to get the zip files that contain the encryption algorithms and add it to your CLASSPATH statement.
To use the self-signed certificate, complete the following steps:
java utilities.KeyringDB com.ibm.as400.access.KeyRing connect <systemname>:<port>
where <port> is the server port of any of the host servers to which you have access. For example, you can use 9476, which is the default port for the secure sign-on server on the AS/400.
Note: You must use com.ibm.as400.access.KeyRing because it is the only location where the AS/400 Toolbox for Java looks for your certificates.
Note:
For each certificate that you want to add, run the command:
java utilities.KeyringDB com.ibm.as400.access.KeyRing connect <systemname>:<port>
After completing the above steps, you have finished setting up the self-certificates. You can run the application, after you ensure the following are in your CLASSPATH statement:
Because jt400.jar contains the default copy of KeyRing.class, the directory that contains com\ibm\as400\access\KeyRing.class must be in the CLASSPATH before jt400.jar.
Note: Instead of adding the directory that contains the KeyRing.class file to your CLASSPATH statement, you can add the new KeyRing.class to your jt400.jar file. Adding the new KeyRing.class file to jt400.jar overwrites the old version.