Keystores contain matched pairs of public certificates and private keys that are used to secure TLS connections.
Before you begin
Your private and public keys must be in PEM or P12 formatted files.
One of the following roles is required to configure keystores:
- Administrator
- Owner
- Topology Administrator
About this task
Important: If you create your own TLS profiles, API Connect verifies
certificates when you upload them, but does not continuously monitor them for expiry. You are
responsible for monitoring and updating your certificates before they expire.
Procedure
-
Access the tab.
-
Navigate to .
-
Select the Keystore tab.
-
Click Create in the keystore table.
| Field |
Description |
| Title |
Enter a title for the keystore. |
| Name |
The name is auto-generated and based on the title, with spaces and other URL-unsafe characters replaced. |
| Summary |
Enter a brief description. |
| Upload private key |
Upload the file that contains the private key certificate. If necessary, click Browse to locate the file. If the file contains both the private and public keys, upload it in step 1. Private and public keys are always uploaded in pairs, either in a single file or in separate files. Keys can be in PEM or P12 format and must contain all intermediate certificates (up to a maximum of 10).
|
| Private key password |
If the private key has a password, enter it here. |
| Upload public key |
If the public key is contained in a separate file, upload it in step 2. Private and public keys are always uploaded in pairs, either in a single file or in separate files. Keys can be in PEM or P12 format and must contain all intermediate certificates (up to a maximum of 10).
|
-
Click Save.
Note: Uploaded keys and certificates cannot be downloaded from API Connect.