1. Get StartedPrimavera Data Service Version 20
  2. Primavera Data Service Introduction
  3. Importing Certificates into the JDK

Importing Certificates into the JDK

In some cases it might be be necessary to import site certificates for the Primavera Data Service into the JDK. This process requires that you export the certificates from a browser and then import them to your JDK environment. Refer to the documentation for your browser to learn how to export certificates.

The Primavera Data Service requires three certificates which exist in a hierarchy. You must export all three certificates. You must import the certificates in the same hierarchical structure as they exist in the browser.

To import the certificates to your JDK environment:

  1. Copy the files containing the exported certificates to the machine from which you intend to use to run queries against the data service.
  2. On the same machine, open the command prompt.
  3. In the command prompt, navigate into the jre\bin folder in your JDK home directory.
  4. Enter the following commands, providing your Java environment keystore password when prompted: 
    		./keytool -import -trustcacerts -alias oraclecloud_root -keystore <JDK cacerts folder> -file <root certificate>

Where:

  1. <JDK cacerts folder> is the full path to the \jre\lib\security\cacerts folder in your JDK home directory.
  2. <root certificate> is the full path and filename to the file you created from exporting the root certificate from the certificate hierarchy in your browser. 
    		./keytool -import -alias oraclecloud_secondary -trustcacerts -keystore <JDK cacerts folder> -file <secondary certificate>

Where:

  1. <JDK cacerts folder> is the full path to the \jre\lib\security\cacerts folder in your JDK home directory.
  2. <secondary certificate> is the full path and filename to the file you created from exporting the second level certificate from the certificate hierarchy in your browser.

		./keytool -import -alias oraclecloud_tertiary -keystore <JDK cacerts folder> -file <tertiary certificate>

Where:

  1. <JDK cacerts folder> is the full path to the \jre\lib\security\cacerts folder in your JDK home directory.
  2. <tertiary certificate> is the full path and filename to the file you created from exporting the lowest level certificate from the certificate hierarchy in your browser.