In this section: |
This section describes how to configure trust store management.
Download the client certificate (sfdc-client.cert) from Salesforce website.
Download the intermediate certificate (for example, verisignclass3ca.cer) and the root certificate (for example, verisignintermediateca.cer) according to the client certificate.
Use the following command to import the root certificate:
D:\ certificate>keytool -import -alias verisign_root_ca -file verisignclass3ca.cer -keystore truststore.jks -storepass iwaysoft
Use the following command to import the intermediate certificate:
D:\ certificate>keytool -import -alias verisign_intermediate_ca -file verisignintermediateca.cer -keystore truststore.jks -storepass iwaysoft
Before you import the client certificate, verify that the alias is compliant to the certificate.alias key, which is defined in the Salesforce adapter configuration file (LocalStrings.properties). The default is salesforce.
Use the following command to import the client certificate:
D:\certificate>keytool -import -alias salesforce -file sfdc-client.cert -keystore truststore.jks -storepass iwaysoft
Depending on your environment, the following error may be generated during the import process:
keytool error: java.lang.Exception: Input not an X.509 certificate.
As a workaround, you must transform the client certificate format to a Base64 encoded binary format.
Note: Before you continue, make sure that the root certificate is installed.
Perform the following steps:
The Open dialog box is displayed.
The Internet Options dialog box opens.
The Certificates dialog box opens.
D:\certificate>keytool -import -alias salesforce -file sfdc-client.cert -keystore truststore.jks -storepass iwaysoft
iWay Software |