> it sounds like all I need to do is import my self-signed > certificate one time into system truststore you mentioned and the > exception should go away correct?
Yes. If that is the case, my next > how do I install my certificate in the system truststore? keytool -import -alias your_alias -trustcacerts -file /path/to/cert.pem -keystore /path/to/keystore -storepass changeit I recall you are on Windows, so keytool will not likely be on your path. It's in $JAVA_HOME/bin. > Is there a reason not to use the default location? It's bad practice to import self-signed certificates into the system keystore/truststore. (One file is used for both purposes by default.) If you have your own PKI infrastructure, then it's entirely valid to import the root certificate of your institution's PKI into the system truststore. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
