During GlassFish Server installation, a certificate is generated in Java Secure Socket Extension (JSSE) format suitable for internal testing. By default, GlassFish Server stores its certificate information in certificate databases in the domain-dir/config directory:
The key3.db file contains GlassFish Server certificate, including its private key. The keystore file is protected with a password.
Each keystore entry has a unique alias. After installation, the GlassFish Server keystore has a single entry with an alias of s1as.
The cert8.db file contains the GlassFish Server trusted certificates, including public keys for other entities. For a trusted certificate, the server has confirmed that the public key in the certificate belongs to the certificate's owner. Trusted certificates generally include those of CAs.
By default, GlassFish Server is configured with a keystore and truststore that will work with the example applications and for development purposes.