Importing Secure Sockets Layer (SSL) certificates to WebSphere

WebSphere® Application Server uses the certificates that reside in keystores to establish trust for a Secure Sockets Layer (SSL) connection. Since the Db2 port is set to the secure port, therefore Websphere also should be able to trust the Db2 certificate.

Before you begin

Make sure you have already set up JMS providers, JDBC providers, and queue connection factories. For more information refer to Configuring a JDBC provider using the administrative console

About this task

To import SSL certificates to WebSphere:

Procedure

  1. From the WebSphere Application Server administrative console, navigate to Security > SSL certificate and key management
  2. Click on Key stores and certificates under Related Items.
  3. Click on NodeDefaultTrustStore and then under Additional Properties click on Personal certificates.
  4. Click on Import
  5. Click on the radio button Key store file and enter the path to the truststore in the text box Key file name. For example, <path_to_truststore>/key.p12
  6. In the Key file password text box, enter the truststore password and then click on Get Key File Aliases. The drop down Certificate alias to import should display the name of SSL certificate that you created.
  7. Click Apply and then click Save.

Results

You should see the SSL certificate listed in the truststore, and it should have the details such as CN=<common_name>,O=<organization>,OU=<organizational_unit>, and so forth.