Import a Certificate to the Client Keystore on the Agent

Setting Up and Running FTP Workload › Configuring SSL FTP › How to Configure SSL FTP Using a Generated Certificate › How to Add a Certificate to the Client Keystore on the Agent › Import a Certificate to the Client Keystore on the Agent

Import a Certificate to the Client Keystore on the Agent

You can import the server keystore certificate to the client keystore on the agent using the keytool utility that is provided with the JRE.

Note: Add the keytool path to your path variable.

Follow these steps:

Open a PASE terminal session.
Change to the directory that contains the agent program files.
Enter the following command:
```
keytool -import -file key.cer -keystore cacerts
```
To import a certificate that was exported with an alias, include the same alias in the import command. For example, suppose that a certificate was exported with the following command:
```
keytool -export -alias agent -file key.cer -keystore serverkeystore
```
To import that certificate, use the following command:
```
keytool -import -alias agent -file key.cer -keystore cacerts
```
Follow the prompts.
The certificate is imported to the agent client keystore.

Example: Import a Certificate to the Client Keystore on the Agent

The following example shows sample keytool prompts and values:

C:\Program Files\Cybermation\ESP System Agent>keytool -import -file key.cer -keystore cacerts
Enter keystore password:  changeit
Owner: CN=Cyberuser C, OU=ESPSystemAgent, O=r, L=g, ST=d, C=ca
Issuer: CN=Cyberuser C, OU=ESPSystemAgent, O=r, L=g, ST=d, C=ca
Serial number: 41239e39
Valid from: Thu Apr 21 09:55:40 EDT 2005 until: Mon Jun 05 09:55:40 EDT 2006
Certificate fingerprints:
MD5:  31:CC:29:0F:B6:C8:E9:3C:70:C7:6B:6C:AD:B7:00:38
SHA1:9D:86:A7:51:15:9E:B1:D3:E7:3B:59:C6:B2:E0:E0:3F:3D:C6:97:6
Trust this certificate? [no]:  yes
Certificate was added to keystore