User guide
Option
Default Description
"jks".
ssl.keyStore <store filename> none Indicates the filename of the keystore.
ssl.keyStorePassword
<password>
none Indicates the password for the keystore.
ssl.trustStore
<trust store filename>
none Indicates the filename of the trust store.
ssl.trustStorePassword
<password>
none
Indicates the password of the trust store.
5.4 Using Self-Signed Certificates for Testing
The following code is an example that may be used to build and copy certificates that may
be used for SSL communications where the client and server are on OpenVMS nodes that
have Java environments already set up.
Information such as the keystore and password should be changed appropriately for your
own situation.
$! The following should be done on the Server node
$ write sys$output "Generating the Server KeyStore in file rdbjdbcsrv.kst
$ keytool –genkey –alias rdbjdbc-sv
-dname "CN=Jim Murray, OU=Rdb Engineering, O=Oracle, c=US"
-keypass "CHANGETHIS" –storepass "CHANGETHIS" –KeyStore rdbjdbcsrv.kst
$!
$write sys$output "Exporting the certificate from keystore to external
file server.cer
$ keytool –export –alias rdbjdbc-sv –storepass "CHANGETHIS" –
-file server.cer –keystore rdbjdbcsrv.kst
$!
$!----------------------------------------------------------------------
$!
$! The following should be done on the client node
$!
$write sys$output "Generating the Client KeyStore in file rdbjdbccli.kst
$ keytool –genkey –alias rdbjdbc-cl –
-dname "CN=Rdbjdbc Client, OU=X, O=Y, L=Z, S=XY, C=YZ"
-keyalg RSA –keypass "CHANGETHIS" –storepass "CHANGETHIS" –keystore
rdbjdbccli.kst
$!
$write sys$output "Exporting the certificate from keystore to external
file client.cer
$ keytool –export –alias rdbjdbc-cl –storepass "CHANGETHIS"
61