The keytool command line application is provided with the
SDK.
In the production environment you might choose to use externally
signed certificates, which are managed in a similar way.
Configuring your SSL server
To configure your SSL server you create a server key ring
and certificate, export the server's signer certificate, and
transfer the server certificate to the client.
Configuring your SSL clients
To configure your SSL clients you create a client key ring
and import the server's signer certificate, create a self-signed
certificate in the client. Next you export the client's signer certificate,
and transfer the server certificate to the client. Finally you import
the client signer certificate into the server's key ring file.