TrustStore setup

You may want to set up TrustStore for the following:

If you want the HTTPS protocol listener to authenticate the client, set the SSL" UseClientAuth connector configuration property to true. In this case, the HTTPS protocol listener expect s TrustStore to contain certificates for all trusted clients. Note that the connector uses the JSSE default mechanism to trust clients.

If you are invoking HTTPS services, the HTTP-HTTPS protocol handler requires that TrustStore trust the service. This means that TrustStore must contain the certificates of all trusted HTTP services. Note that the connector uses the JSSE default mechanism to trust clients. To import the trusted certificates into the TrustStore, enter a command such as the following:

keytool -import -alias trusted1 -keystore c:\security\truststore -file
 c:\security\trusted1.cer

keytool now prompts for the keystore password. If you enter -keystore c:\security\truststore, make sure that the SSL -> TrustStore hierarchical property is set to c:\security\truststore. Also you must set the value of the SSL -> TrustStorePassword hierarchical property to the password you entered previously.

Copyright IBM Corporation 2003, 2005. All Rights Reserved.