Connector GuidesJava Connector Server Implementation GuideConfiguring Java CS › Set the TLS Store Certificate Password

Previous Topic: Change the Java CS Administration Stored Password

Next Topic: Adjust Java CS Service Start Parameters

Set the TLS Store Certificate Password

When LDAP clients request TLS secured connections to the Java CS, you can configure the password used on the Java keystore. We recommend that you configure the password to overwrite the temporary cached password for this keystore when freshly installed.

Note: If you want to install your own certificate instead of the default Provisioning Manager certificate configured by the installer, you can also manage the keystore using the keytool utility included in the Java Runtime Environment

To set the TLS Certificate store password

  1. Shut down the Java CS.
  2. On Windows, open a Command Prompt window, then enter the following command: 
    cd $jcs_home/_uninst/_jvm/bin

    Windows changes the directory to the JVM's bin folder.

  3. Enter the following command: 
    cd jcs_home/bin
  4. Do one of the following
    1. Run the following command: 
      ldaps_password new-password../conf/override/server jcs.properties

      The encrypted ldapsCertificatePassword value in server_jcs.properties is updated.

    2. Run the following command: 
      ldaps_password new-password ../conf/override/server_jcs.properties connectorManager.connectorClientCertStorePassword

      The encrypted connectorClientCertStorePassword value in server_jcs.properties is updated.

  5. Restart the Java CS.

    Note: The password for the keystore is the password that you set during the Java CS installation.