Trust anchor configuration settings

Use this information to configure a trust anchor. Trust anchors point to key stores that contain trusted root or self-signed certificates. This information enables you to specify a name for the trust anchor and the information needed to access a key store. The application binding uses this name to reference a predefined trust anchor definition in the binding file (or the default).

To view this administrative console page, complete the following steps:

  1. Click Servers > Application Servers > server_name.
  2. Under Additional Properties, click Web Services: Default bindings for Web Services Security > Trust Anchors > New.

Trust Anchor Name
Specifies the unique name used by the application binding to reference a predefined trust anchor definition in the default binding.
Key Store Password
Specifies the password needed to access the key store file.
Key Store Path
Specifies the location of the keystore file.

Use ${USER_INSTALL_ROOT} as this path expands to the WebSphere Application Server path on your machine.

Key Store Type
Specifies the type of key store file.

The value in this field is either JKS or JCEKS.

JKS
Specify this option if you are not using Java Cryptography Extensions (JCE).
JCEKS
Specify this option if you are using Java Cryptography Extensions. Although the JCEKS key store format is more secure, it decreases performance.

Data type String
Default JKS
Range JKS, JCEKS

Related information

Trust anchors collection