<\/p>\n
2. Once the Windows Certificate Manager opens, in the left panel click on the “Trusted Root Certificate Authorities<\/strong>” folder, then click on the Certificates<\/strong> folder.\u00a0 Then in the right panel, select the certificate that you going to copy.\u00a0 In my example, I am choosing the Go Daddy certificate.<\/p>\n 3.\u00a0 Right click on the certificate highlighted, and scroll down to All Tasks<\/strong>, then click on Export<\/strong>.<\/p>\n 4.\u00a0 The Certificate Export Wizard will appear, click on the Next<\/strong> button.<\/p>\n 5. The Export File Format screen will appear.\u00a0 Leave it at the default “DER encoded binary X.509 (.CER)”.\u00a0 Click the Next<\/strong> button.<\/p>\n 6. In the File to Export screen, click the Browse<\/strong> button to name & save the certificate in the chosen location.<\/p>\n 7.\u00a0 I like to save the certificate in the same directory as the JDK’s keystore file (cacerts).\u00a0 Name the certificate, and click the Save<\/strong> button.<\/p>\n 8. This returns to the File to Export screen, click the Next<\/strong> button.<\/p>\n 9.\u00a0 The Completing the Certificate Export Wizard screen appears, click on the Finish<\/strong> button.<\/p>\n 10.\u00a0 A pop box may appear notifying that the export was successful.\u00a0 Click the OK<\/strong> button, and the wizard closes.\u00a0 It is now OK to close the\u00a0Windows Certificate Manager.<\/p>\n 11.\u00a0 Next find the location of the keytool file, and the cacerts file in your JDK location. They will be needed for the importing of the certificate.<\/p>\n 12. Open a command prompt window to the directory that the keytool executable file is in, and test it by running the command: keytool -help<\/strong><\/p>\n 13. Enter the keytool command to import the certificate.\u00a0 Please note that the alias is the name you want for the certificate, which in my example is: “GoDaddy”.\u00a0 The double quotes are needed to if the name contains spaces.\u00a0 In my example I used the full name with location for the cacerts file and the certificate that I am importing.<\/p>\n Note:\u00a0 This certificate already exist in the keystore file by default, however I am still using it for this example.<\/p>\n If prompted for a password, enter the one for your java keystore.\u00a0 If a password was not set for this keystore, the default is: changeit<\/strong><\/p>\n 14.\u00a0\u00a0 Many line will scroll with security information regarding the certificate.\u00a0 You will be prompted if you would like to trust this certificate.\u00a0 Type yes<\/strong>, then click enter button.\u00a0 Then the line returned will let you know if the certificate was added successfully.<\/p>\n Note: If you should get a java.io error about writing the certificate, temporarily change the write permissions for the security folder where the cacerts file exists.<\/p>\n 15.\u00a0 Verify that the certificate was added by using the keytool command with the list option.\u00a0 Enter the password again if prompted.<\/p>\n 16.\u00a0 A long list will appear, and you will have search for your certificate to verify.<\/p>\n![\"certmgr.msc\"](\"http:\/\/www.theSQLReport.com\/wp-content\/uploads\/2014\/02\/certmgr.msc_.jpg\")
<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n\n
\n
<\/a><\/p>\nkeytool -import -alias <your alias name> -keystore <cacerts location> -trustcacerts -file <certificate location><\/strong><\/pre>\n
<\/a><\/p>\n<\/a><\/p>\nkeytool -list -keystore <cacerts location><\/strong><\/pre>\n
<\/a><\/p>\n