Trust anchor configuration settings
Use this information to configure a trust anchor. Trust anchors
point to key stores that contain trusted root or self-signed certificates.
This information enables you to specify a name for the trust anchor and the
information needed to access a key store. The application binding uses this
name to reference a predefined trust anchor definition in the binding file
(or the default).
To view this administrative console page, complete the following steps:
- Click Servers > Application Servers > server_name.
- Under Additional Properties, click Web Services: Default bindings for
Web Services Security > Trust Anchors > New.
-
Trust Anchor Name
- Specifies the unique name used by the application binding to reference
a predefined trust anchor definition in the default binding.
-
Key Store Password
- Specifies the password needed to access the key store file.
-
Key Store Path
- Specifies the location of the keystore file.
Use ${USER_INSTALL_ROOT} as this path expands to the WebSphere Application
Server path on your machine.
-
Key Store Type
- Specifies the type of key store file.
The value in this field is either JKS or JCEKS.
-
JKS
- Specify this option if you are not using Java Cryptography Extensions
(JCE).
-
JCEKS
- Specify this option if you are using Java Cryptography Extensions. Although
the JCEKS key store format is more secure, it decreases performance.
| Data type |
String |
| Default |
JKS |
| Range |
JKS, JCEKS |