Red Hat Training

A Red Hat training course is available for Red Hat Gluster Storage

E.5. Java Keystores

This appendix demonstrates how to import the X.509 certificate exported from the Red Hat Storage Console into a new Java keystore file.
This procedure helps a user import the rhsc.cer certificate into a Java keystore. This procedure requires the keytool management utility from the Java Development Kit (JDK) available for Linux and Windows systems.

Procedure E.5. Import a Certificate into a New Java Keystore

  1. Access your client machine and locate the rhsc.cer certificate.
  2. Import the rhsc.cer certificate using the Java keytool management utility. 
    keytool -importcert -v -trustcacerts -keystore restapi.jks -noprompt -alias rhsc -file rhsc.cer
    The keytool utility creates a new keystore file named restapi.jks.
  3. keytool asks for the keystore password. Enter a password and keytool asks to verify it.
  4. keytool adds the rhsc.cer certificate to the restapi.jks keystore. Use keytool -list command to view the certificate's entry in the keystore: 
    keytool -list -keystore restapi.jks -storepass [password]

Important

Some versions of keytool parse the certificate incorrectly. If keytool does not recognize the certificate, convert it to a different X.509 format with the openssl tool: 
openssl x509 -in rhsc.cer -out rhsc.new -outform [pem|der]
22632%2C+Console+Developer+Guide-322-09-2014+17%3A11%3A35Report a bug