Add the Digital Certificate to the Keystore

CA GovernanceMinder Installation Guide › SSL-Encrypted Communication › Add the Digital Certificate to the Keystore

Add the Digital Certificate to the Keystore

Before you can configure CA GovernanceMinder to use SSL communication, you export and import the digital certificate to the keystore.

This procedure does the following:

Describes how to configure CA GovernanceMinder to use SSL for secure communication using JBoss version 5.1.0 and JDK version 1.6_23.
Assumes that you have created a digital certificate from the Certificate Authority named example.cer.

Follow these steps:

Stop JBoss if it is running. Do one of the following:
- From the JBoss job windows, interrupt (Ctrl+C) the process.
- Stop the JBoss Application Server service from the Services Panel.

Export and import the digital certificate as follows:

On a system where the Portal is installed, open a Command Prompt window and navigate to the following directory:
```
C:\Program Files\Java\jdk1.6_23\bin
```

To export, enter the following command:

"%JAVA_HOME%\bin\keytool" -v -export -alias serverkeys -keystore "C:\Program Files\CA\RCM\Server\eurekify-jboss\server\eurekify\conf\server.keystore" -storepass password -file example.cer

The digital certificate is exported.

To import, enter the following command:

"%JAVA_HOME%\bin\keytool" -v -import -keystore "%JAVA_HOME%\jre\lib\security\cacerts" -storepass password -file example.cer

The digital certificate is imported.

Copy the example.cer file to the following JDK security folder:
```
C:\Program Files\Java\jdk1.6_23\jre\lib\security
```
Add the certificate to a local cryptographic APJ store as follows:
1. Locate and double click on the example.cer file.
  A Certificate window displays.
2. In the General tab, click Install Certificate.
  A Certificate Import Wizard displays.
3. Complete the prompts as required and click Finish.
  A successful window displays when complete.
The digital certificate is added to the keystore.