2 Replies Latest reply on Nov 1, 2017 4:09 PM by kteja

    Custom Keystore Implementation - Is it required ?

    kteja

      I have couple of web services , which needs individual Certificate to be picked by each service for authentication

      Currently when we add a new Certificate , all the services are picking a single Certificate with farthest expiration date, which I have heard is the default behavior of the Keystore we have been provided with JDK.

      What can be done to achieve this ? , I have heard implementing/overriding Custom Keymanager  will help to choose certificate as needed based on the alias we provide per service. Is it a feasable solution . I am relatively new to the Security API .

       

      Can you all let me know if this is the approach that needs to be followed ? , If so , kindly guide me in that direction.Any posts in that direction can also help

       

      ***Moderator action (Timo) removed callout to users who have not participated in this thread already, as it's rude to other users.***

       

      TIA - teja