Panel | |
---|---|
|
Overview
TrustStore Settings, which allow you to manage the default TrustStore, are available through the user interface.
The Tomcat user running the Tomcat process has to have write access to the TrustStore file to import or examine entries.
After importing or deleting an entry, restarting the controller may be required for the changes to take effect.
Deleting and importing is only for the current cluster node.
If you choose not to use the JRE TrustStore, you must configure the following properties in the Universal Controller Start-up Properties (uc.properties) file:
...
TrustStore Settings Details
See the field descriptions below, for a description of all fields and buttons that display in the TrustStore Settings Details.
TrustStore Settings Field Descriptions
Field Name | Description | ||||||
---|---|---|---|---|---|---|---|
Details | This section contains information on the TrustStore details. | ||||||
TrustStore Name | The name of the default TrustStore. This is the value of the javax.net.ssl.trustStore system property. | ||||||
TrustStore File | The actual file name for the default TrustStore. In most cases, if the TrustStore Name is specified then the TrustStore File will be the same; however, if the TrustStore Name is not specified or is not accessible, then a different default TrustStore may be used (e.g. java-home/lib/security/cacerts ). If the TrustStore File is blank, then no accessible TrustStore could be found and an empty immutable TrustStore will be used instead. | ||||||
TrustStore Type | The type for the default TrustStore:
| ||||||
TrustStore Provider | The provider for the default TrustStore. | ||||||
TrustStore Password | The password for the default TrustStore. A masked value will be show if the TrustStore password is specified; otherwise, it will be blank. | ||||||
Entries | This section contains information on the TrustStore entries. | ||||||
Alias | |||||||
Type | Entries can be one of the following types:
| ||||||
Algorithm | Key algorithm. | ||||||
Certificate Expiration | The date and time that the certificate expires. | ||||||
Created | The date and time that the certificate is entry was created. | ||||||
Buttons | This section identifies the buttons displayed above the TrustStore settings. | ||||||
| Opens a dialog to import a trusted certificate. | ||||||
Examine Certificate... | Opens details for the selected entry. | ||||||
Delete | Deletes selected entry from the TrustStore. |
...
Field Name | Description |
---|---|
Details | This section contains information on the Certificate details. |
Version | The version number (1, 2, or 3) |
Issuer | The distinguished name (DN) of the certificate’s issuer. |
Subject | The distinguished name (DN) of the certificate’s subject (owner). |
Serial Number | The serial number generated by the certificate’s issuer. |
Valid From | The date and time that the certificate is valid from. |
Valid Until Until | The date and time that the certificate is valid until. |
Signature Algorithm Algorithm | The algorithm used to sign the certificate. |
Public Key Algorithm | The algorithm used for the public key. |
Fingerprints | The SHA-1 and SHA-256 certificate fingerprints. |
Importing a Trusted Certificate
Step 1 | From the Administration navigation pane, select TrustStore Settings. The TrustStore Settings page displays. |
---|---|
Step 2 | Click the Import Trusted Certificate... button at the top of the page. |
Step 3 | |
Step 4 |