After uploading a custom CA SSL Certificate and private key to Oracle ILOM, perform the following steps to verify that the Java client is properly configured to validate the custom CA SLL certificate and private key.
On a Windows system, at the prompt, type:
keytool -list -keystore "c:\Program Files (x86)\Java\jre<version>\lib\security\cacerts
On a Linux system, at the prompt, type:
keytool -list -keystore $JAVA_HOME/jre/lib/security/cacerts
If the required root CA Certificate or intermediate root CA certificate is present in the Java keystore, you can, at any time, proceed to start the Oracle ILOM remote KVMS console at any time.
If the required root CA Certificate or intermediate root CA certificate is missing in the Java keystore, consult with your security officer or system administrator prior to continuing this procedure to add the missing the CA certificate details to the Java keystore.
On a Windows system, at the prompt, type:
keytool -importcert -alias certalias -file root-ca-cert -keystore "c:\Program Files (x86)\Java\jre<version>\lib\security\cacerts"
On a Linux system, at the prompt, type:
keytool -importcert -alias certalias -file root-ca-cert -keystore $JAVA_HOME/jre/lib/security/cacerts
On a Windows system, at the prompt, type:
keytool -list -alias certalias -keystore "c:\Program Files (x86)\Java\jre<version>\lib\security\cacerts"
On a Linux system, at the prompt, type:
keytool -list -alias certalias -keystore $JAVA_HOME/jre/lib/security/cacerts