After you generate the certificate request, you submit
it to your chosen certificate authority (CA). You then import the
returned certificate into the keystore. Because your servers rely
completely on your keystore, you need to import the root and any intermediate
certificates. These are provided by the CA and you must import them
to the same keystore where you created the certificate request.
- Open a command prompt window.
- Execute the following commands:
keytool -import -alias my_certificate_authority
-file rootcert.cer -keystore .\siebelkeystore.jks
Imports
the root CA certificate into the keystore. You are prompted to confirm
if you trust the certificate.(Optional) keytool -import -alias intermediate_certificate_authority
-file intercert.cer -keystore .\siebelkeystore.jks
Imports an intermediate CA certificate into the keystore if required.
Your CA will inform you if this is a requirement.keytool -import -alias siebel -file my_cert.cer
-keystore .\siebelkeystore.jks
Imports the Siebel certificate
into the keystore.keytool -import -alias my_certificate_authority
-file rootcert.cer -keystore .\TrustStore.jks
Creates
the truststore and imports the CA certificate. This is the first reference
to the truststore, so it prompts you for a password in order to create
it and then prompts you as to whether or not to trust the certificate.Note: For simplicity, it is recommended that you use the same password
for both the Siebel Keystore and the TrustStore, as the installation
wizards for Siebel CRM request both the stores, but only ask for one
password. If your keystore and truststore have different passwords,
you will need to manually edit the server.xml file after completing
the installation. This file is located in the applicationcontainer\conf
folder for that component.