Stack Overflow
Stack Overflow

Questions tagged [truststore]

truststore contains certificates from other parties that you expect to communicate with, or from Certificate Authorities that you trust to identify other parties.

truststore contains certificates from other parties that you expect to communicate with, or from Certificate Authorities that you trust to identify other parties.

465 questions
318
votes
7 answers

Truststore and Keystore Definitions

What's the difference between a keystore and a truststore?
Rob Wright
  • 3,374
  • 2
  • 18
  • 12
174
votes
5 answers

How can I use different certificates on specific connections?

A module I'm adding to our large Java application has to converse with another company's SSL-secured website. The problem is that the site uses a self-signed certificate. I have a copy of the certificate to verify that I'm not encountering a…
skiphoppy
  • 97,646
  • 72
  • 174
  • 218
104
votes
3 answers

Digital Certificate: How to import .cer file in to .truststore file using?

Has anyone came across where they have to deal with .truststore file? and knowing how to import .cer into .truststore file? I am not sure if I have to use Java Keytool or Linux command (such as openssl command). Thanks
netic
  • 2,854
  • 6
  • 28
  • 25
95
votes
5 answers

Using a custom truststore in java as well as the default one

I'm writing an application in Java which connects to two web servers via HTTPS. One got a certificate trusted via the default chain of trust, the other uses a self signed certificate. Of course, connecting to the first server worked out of the box,…
user1785730
  • 3,150
  • 4
  • 27
  • 50
85
votes
10 answers

How to make Python use CA certificates from Mac OS TrustStore?

I need to use custom root certificates on the company intranet and loading them in the Mac OS TrustStore (KeyChain) does solve the problem for all browsers and GUI apps. It seems that it works even with the version of curl that ships with Mac OS X…
sorin
  • 161,544
  • 178
  • 535
  • 806
79
votes
10 answers

Specifying trust store information in spring boot application.properties

I am using springBootVersion 1.2.0.RELEASE. I'm trying to have my keystore and truststore configured through application.properties. When I add the following settings, I can get the keystore to work, but not the…
user4408912
  • 791
  • 1
  • 6
  • 3
57
votes
3 answers

Why does java have both the cacerts and jssecacerts files?

I'm seriously confused on the differences between cacerts and jssecacerts files. I know that by default java looks for the jssecacerts file and then the cacerts file. But what is the point of the jssecacerts file? My understanding is that if a new…
hooknc
  • 4,854
  • 5
  • 31
  • 60
55
votes
5 answers

java - path to trustStore - set property doesn't work?

I've setup a self-signed certificate to test an ssl java connection - however, it is refusing to locate the java trustStore. I've saved copies of it in /Java/jre6/lib/security in addition to the folder where the classes are compiled to (im using…
oneAday
  • 1,261
  • 4
  • 15
  • 16
48
votes
2 answers

What certificates are trusted in truststore?

I do not know very well keystore / truststore lingo but as far as I'm concerned, a truststore keeps the certificates trusted by a peer server. I can view the content of a keystore using keytool -list -keystore refArchive/testkeystore Enter keystore…
code-gijoe
  • 6,949
  • 14
  • 67
  • 103
41
votes
4 answers

Do you not need a password to access a truststore (made with the java keytool)?

I just created a truststore with the java keytool (for server authentication of a server that does not have a CA cert). However I just noticed something strange. I am starting my client like this: java…
sixtyfootersdude
  • 25,859
  • 43
  • 145
  • 213
37
votes
3 answers

How to generate keystore and truststore

How to: Generate keystore Generate truststore To make SSL work between client and server, I need help in only Generation of keystore and truststore for mutual authentication step-by-step guide with terminal commands(Keytool and openssl).
SOWMITHRA KUMAR G M
  • 1,320
  • 2
  • 11
  • 17
32
votes
4 answers

How to create an empty java trust store?

I want to make a https client in java which initially does not have any CA certs to trust. Since I don't want the JVM to use the default cacerts file I should make an empty trust store and point it to the JVM. How can I make an empty trust store?
George
  • 7,206
  • 8
  • 33
  • 42
32
votes
5 answers

How to set up Java VM to use the root certificates (truststore) handled by Mac OS X

I get the following exception while using the scribe OAuth library. Caused by: javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be…
Tamas
  • 3,254
  • 4
  • 29
  • 51
31
votes
5 answers

Is it possible to get Java to ignore the "trust store" and just accept whatever SSL certificate it gets?

I am trying to write an SSL client that sends mail using the javax.mail API. The problem I am having is that the server request that I use SSL, but the server is also configured with a non-standard SSL certificate. The web pages I have found say…
vy32
  • 28,461
  • 37
  • 122
  • 246
26
votes
4 answers

How to list certificates, trusted by OpenSSL?

As I understand, any software working with X.509 certificates may have own basis to decide, whether a certificate is trusted or not. AFAIK OpenSSL just consults a list (such as, for example, /etc/ssl/certs) and checks if the certificate is present…
Konstantin Shemyak
  • 2,369
  • 5
  • 21
  • 41
1
2 3
30 31