The Keystore panel contains configurations for individual keystores.
When you edit an SSL configuration in the panel,
you can select these individual configurations to be part of an SSL
configuration.
You can create configurations or use the configurations that are
provided:
- Default JSSE Key Store
- Default JSSE Trust Store
- Default OpenSSL CA Store (certificate authority)
- Default OpenSSL Cert Store (for certificates)
- Default OpenSSL Key Store
Each keystore has the following properties:
- Name
- Access
- The access group that defines which users can edit or delete this
keystore.
- Location
- The location of the keystore file. The default keystores all use
the default location for Build Forge keystores: <bfinstall>/keystore.
If you are using WebSphere Application Server as the application server
rather than the provided Tomcat application server, specify an absolute
path.
- Keystore Type
- A keystore must be one of the following types:
- Password
- Specifies a password that must be used when accessing the keystore.
- Verified
- Specify the password again here to verify it.
Keystores and WebSphere Application Server
If
you use WebSphere Application Server rather than the provided Tomcat
application server, additional requirements apply to configuring keystores:
- Location field: you must provide an absolute path, rather than
a relative path.
- Multiple services components: if you install multiple Build Forge
services components, they are installed on different hosts. You configure
security for each services component. The keystore path specified
in the Location field must be identical for each services component.