Import certificate into client application trust-store

Home
StrongKey FIDO Server

Release Notes
Introduction
Installation
Administration
How To ...
Troubleshooting
Developer
Demos
- TLS ClientAuth + FIDO
- Back
MFA Implementations

To import the certificate used by SKFS into Client trust-store use the following steps:

Export the certificate from updated keystore to import into Glassfish and JAVA trust-stores:

keytool -exportcert -alias s1as -file /usr/local/strongkey/certs/<SKFS-FQDN>.der --keystore /usr/local/strongkey/payara5/glassfish/domains/domain1/config/keystore.jks -storepass changeit

Import the certificate from previous step into the Glassfish and JAVA trust-stores.

keytool -importcert -noprompt -alias <FQDN> -file /usr/local/strongkey/<SKFS-FQDN>.der --keystore /usr/local/strongkey/payara5/glassfish/domains/domain1/config/cacerts.jks --storepass changeit

keytool -importcert -noprompt -alias <FQDN> -file /usr/local/strongkey/<SKFS-FQDN>.der --keystore /usr/local/strongkey/certs/cacerts --storepass changeit

NOTE: The default keystore password is: “changeit”

Restart Glassfish
```
sudo service glassfishd restart
```