We have a requirement where we have my.crt file which we want to use it with cacerts.
- I have checked the blogs and documentation its not clear on how to use my.crt file with cacerts
- I have used -Dweblogic.security.SSL.trustedCAkeystore='/xxx/sr/cacerts' to change the path of the keystore , but cannot see it loading in the logs
Also when creating identity.jks and trust.jks from cacerts file I am getting :
keytool -importcert -alias mykey -trustcacerts -file trust.jks -keystore cacerts -storepass changeit
keytool error: java.lang.Exception: Input not an X.509 certificate
Also should I be using custom identity custom trust OR custom identity and command-line trust to get this working
Any help please
I have already done this, we want to load this cacerts file not from the default jdk security folder but a external folder /qc/test/security/cacerts and load it from this location and hence my question whether to use customer trust and identity?
- reason being we have a plan to roll out this file to many env and we do not want to change the cacerts in jdk security folder.
- file for each env may be different but is rolled out from one place.