1. Administering System Security
2. Administering User Security
3. Administering Message Security
4. Administering Security in Cluster Mode
Enabling Dynamic Configuration
5. Managing Administrative Security
6. Running in a Secure Environment
The sections Certificates and SSL and Administering JSSE Certificates describe the relevant concepts and use of certificates in GlassFish Server.
By default, GlassFish Server uses self-signed certificates. The self-signed certificates that GlassFish Server uses might not be trusted by clients by default because a certificate authority does not vouch for the authenticity of the certificate.
You can instead use your own certificates, as described in Using Your Own Certificates.