Updating the WebSphere Application Server default keystore for client certificate authentication

If you want to use secure connections with an Eclipse Amlen server that is configured to use client certificates, then you must update the WebSphere® Application Server keystore. The keystore in the WebSphere Application Server security configuration needs to be updated to include a client certificate that is valid for the Eclipse Amlen server.

The keystore that you are using to store the client certificate must exist.

These steps are based on a non-cluster installation for WebSphere Application Server version 8.5.

Complete the following steps in the WebSphere Application Server administrative console to update the default keystore.

1. Log on to the WebSphere Application Server administrative console.
2. Click Security > SSL certificate and key management > Key stores and certificates > NodeDefaultKeyStore > Personal certificates.
3. Import or create a valid client certificate. For more information about importing and creating certificates, see Personal certificates collection.
4. Click OK.
5. Click Save.

The client certificate is stored in the WebSphere Application Server keystore.