Integration with external tools and services may require connections secured with TLS/SSL. DTP will reject connections to external servers if the server's certificate is not trusted or unsigned by a trusted certificate authority. To add a new trusted certificate, perform the following steps:

  1. Obtain the trusted certificate to add. These certificates can be in any format accepted by the Java keytool application.

  2. Execute the following command to import the certificate to the truststore: 
    keytool -import -alias <new unique alias> -file <certificate file> -keystore <DTP_INSTALL>/jre/lib/security/cacerts 

  3. Use changeit as the password when prompted.

  4. Confirm that you want to import the certificate when prompted

  5. Restart DTP services to apply the changes.

To import a certificate chain, repeat steps 1-4 for each certificate in the certificate chain in order of root certificate first to end entity certificate last. 

  • No labels