Adding certificate to Java Keystore

In case of SSL certificate errors, you may have to load certificate files in Java keystore.

Download the certificate

Launch Service or Application URL in browser and downloaded certificate .cer file, or

Install the Certificate

either into cacerts

You can load it directly into your java cacerts, but this will be removed when Java is upgraded. The next session shows that approach, which is the easiest to use, but may not be the best option for your situation.

1. First figure out JDK used by FlexDeploy and/or Endpoint as applicable.

   1. For example, cd /u01/jdk1.8.0_60

2. cd jre/lib/security/

3. Copy .cer file in this folder.  

4. cp cacerts cacerts.bak

5. ../../bin/keytool -importcert -keystore cacerts -alias <alias name> -file <certificate file name>

6. Type password (likely “changeit”)

Or into another keystore (recommended)

Alternatively, make a new keystore to hold it, or add it to an existing alternate keystore.

1. cd to FLEXDEPLOY_HOME

2. <JAVA_HOME>/bin/keytool -importcert -keystore flexdeploy.keystore -alias <alias name> -file <certificate file name>

Related articles

• Page:
  ServiceNow Integration
• Page:
  Adding certificate to Java Keystore
• Page:
  Customize Attribute List Data
• Page:
  Customize Attribute Defaults
• Page:
  Appendix - Setting up an SSH tunnel to a remote database