why do i need to import public certificates of external sites in jvm to make https call as client fr
We make a lot of https calls from our application running on weblogic(as client) to external sites. We created certificates using keytool command and configure SSL by following Oracle provided ssl steps and everything worked fine.
During the process, I had to go to each web site(like banking sites, external partner's) and download their public certificates(Full chain) & import them into weblogic JVM(from where we are making an https call) else we were unable to make https connection.
I am not sure why I have to download certificates for all external sites and import them in to weblogic JVM. We don't always get notified by external vendors, banking sites when they update/change their public certificates so I am not sure how I keep the certificates up to date in client side JVM's.
During the process, I had to go to each web site(like banking sites, external partner's) and download their public certificates(Full chain) & import them into weblogic JVM(from where we are making an https call) else we were unable to make https connection.
I am not sure why I have to download certificates for all external sites and import them in to weblogic JVM. We don't always get notified by external vendors, banking sites when they update/change their public certificates so I am not sure how I keep the certificates up to date in client side JVM's.
1