Previous Topic: Change the JCS Administration Stored PasswordNext Topic: Adjust JCS Service Start Parameters

Connector GuidesJava Connector Server Implementation GuideConfiguring JCSSet the TLS Store Certificate Password

Set the TLS Store Certificate Password

When LDAP clients request TLS secured connections to the JCS, you can configure the password used on the Java keystore. We recommend that you configure the password to overwrite the temporary cached password for this keystore when freshly installed.

Note: If you want to install your own certificate instead of the default Provisioning Manager certificate configured by the installer, you can also manage the keystore using the keytool utility included in the Java Runtime Environment

Follow these steps:

  1. Shut down the JCS.
  2. On Windows, open a Command Prompt window, then enter the following command: 
    cd $jcs_home/_uninst/_jvm/bin

    Windows changes the directory to the JVM's bin folder.

  3. Enter the following command: 
    cd jcs_home/bin
  4. Do one of the following
    1. Run the following command: 
      ldaps_password new-password../conf/override/server jcs.properties

      The encrypted ldapsCertificatePassword value in server_jcs.properties is updated.

    2. Run the following command: 
      ldaps_password new-password ../conf/override/server_jcs.properties connectorManager.connectorClientCertStorePassword

      The encrypted connectorClientCertStorePassword value in server_jcs.properties is updated.

  5. Restart the JCS.

    Note: The password for the keystore is the password that you set during the JCS installation.