How to add SSL certificate into Java cacerts file and JKS keystore.

How to add SSL certificate into Java cacerts file and JKS keystore.

There are some situation when you want to add certificate into the Java trust store. For example: it is useful in case that you want to trust a self signed certificate. This simple guide shows how to download a certificate and how to add it into Java trust store.

1. Downloading certificate

You can download the certificate in a few ways. Using openssl tool or using browser

1.1. Download SSL certificate using openssl

openssl s_client -showcerts -connect better-coding.com:443 /dev/null|openssl x509 -outform PEM >mycertfile.pem

1.2 Downloading SSL certificate using browser

You can download the certificate using Chrome by going to certificate details and then clicking “Copy to file” button.

2.1 Importing certificate into cacert

Go to the JAVA_HOME\bin directory and run:

keytool -importcert -file mycertfile.pem -keystore cacerts -alias "Alias"

2.2 Importing certificate into jks keystore

keytool -importcert -file mycertfile.pem -keystore keystore.jks -alias "Alias" -storepass <PASSWORD>
At the end… May I ask you for something?

If I helped you solve your problem, please share this post. Thanks to this, I will have the opportunity to reach a wider group of readers. Thank You

5 5 votes
Article Rating
Tags: , ,
Subscribe
Notify of
guest
3 Comments
oldest
newest most voted
Inline Feedbacks
View all comments
Gerson
Gerson
10 months ago

Gran aporte, saludos desde colombia

0
Reply
sam
sam
3 months ago

Great Article

0
Reply
Paulina
Paulina
1 month ago

For me worked when I added to 

JAVA_HOME\lib\security

instead of 

JAVA_HOME\bin
Last edited 1 month ago by Paulina
0
Reply