Adding the Liberty certificate to the HTTP key database

To secure the connection between the HTTP server and Liberty, you must add to the key database the certificate that is required to enable trust with Liberty.

If you are using self-signed certificates, add to the HTTP server key database the certificate that you exported from your Liberty keystore.

In a production environment, import certificates into the HTTP key database to ensure that the certificates that are received from Liberty are trusted.

Add the certificate that you exported from the Liberty keystore into the HTTP server key database.

For more information about exporting the certificate from the Liberty keystore, see Creating the Liberty keystore and certificate.

For example, run the following command:

gskcapicmd -cert -add -db "C:\IBM\i2analyze\i2-http-keystore.kdb" -label "libertyKey" -file "C:\IBM\i2analyze\i2-liberty-certificate.cer" -pw "password"