You can replace the Sun JMS IQ Manager’s self-signed server certificate with your own server certificate.
This procedure makes the following assumptions:
You have a private key in PEM format. The file name is mycakey.pem.
Import your server certificate into the default trust store of the Sun Java System Application Server. The trust store is located in the JavaCAPS-install-dir/appserver/domains/domain-name/config directory.
keytool -import -alias stcmscert -file mycacert.pem -keystore cacerts.jks
For the -alias option, you can use any value.
Convert your server certificate and private key from PEM format to PKCS #12 format. You can use the pkcs12 command of the openssl command-line tool to export a file that contains both the server certificate and the private key.
openssl pkcs12 -export -in mycacert.pem -inkey mycakey.pem -out mycert.p12 -name "stcmscert"
Make the following changes to the files:
Change the name of the server certificate file from mycacert.pem to stcmscert.pem.
Change the name of the private key file from mycakey.pem to stcmskey.pem.
(UNIX only) Copy the stcmscert.pem file to a new file called stcmscert.cer.
(Windows only) Change the name of the PKCS #12 file from mycert.p12 to stcmscert.cer.
Copy the stcmscert.pem, stcmskey.pem, and stcmscert.cer files into the JavaCAPS-install-dir/appserver/addons/stcms/templates directory.
If you already created an instance, then you must also copy the stcmscert.pem, stcmskey.pem, and stcmscert.cer files into the JavaCAPS-install-dir/appserver/domains/domain-name/addons/stcms/instance-name/config directory.
Add the STCMS.SSL.UserId and STCMS.SSL.Password properties.
(Windows only) Set the value of the STCMS.SSL.CertificateFileStore.Option property.
If you want the JMS IQ Manager to install the certificate automatically, then set the value to On.
If you want to install the certificate by using the certmgr tool or Internet Explorer, then set the value to Off.
If you already created an instance, then copy the stcms.default.Properties file into the JavaCAPS-install-dir/appserver/domains/domain-name/addons/stcms/instance-name/config directory.
If the domain is running, then restart the domain.