Adding a server certificate to the trust store

Because you are creating a Secure HTTPS connection to LN UI, LN Studio must know whether the server is trusted. Therefore, you must register the trusted server certificates in a trust store. The trust store is a file in "Java Key Store" format. This file contains a "global" configuration that is valid for all workspaces. Therefore, the file is located outside of the LN Studio installation folder, and outside of the workspace folder. A good location is your "home folder".

To add a server certificate to the trust store:

  1. Select Window > Preferences.
  2. In the tree in the left pane of the dialog box, expand Infor LN JCA Connectivity and select Trusted SSL Certificates.
  3. If you do not yet have a trust store, complete these steps:
    1. Click Browse. Browse to the folder where you want to create the trust store, such as C:\Users\<YourName> .
    2. Specify the file name. Use a .jks extension for the file name. For example, specify LNStudioTrustStore.jks.
    3. To complete the browse dialog box, click Open or press Enter.
  4. Optionally, specify a password for the trust store. If you leave the field blank, a default password is used.
  5. Click Apply. If the trust store did not yet exist, you are prompted whether you want to create a new one. Click Yes.
  6. The certificates in the chosen trust store are listed in the Certificates table, and the Add button is enabled now. If you have a copy of the certificate in a file, you can click Add to add that certificate. Usually, this is not the case, so you must use another way.
  7. In the Check Trusted URL field, specify the HTTPS URL of the LN UI server you want to use. You can go back to the Cloud Environments preference page, select the configured cloud environment, click Edit, and copy the Gateway URL. The Gateway URL is the first part of the URL to the LN UI server.
  8. Click Check. Usually, a "Check failed" dialog, which suggests to import the certificate presented by the server, is displayed. Click Yes. The Import Certificate dialog box is displayed.
  9. In the Import Certificate dialog box, the Server Certificates drop-down list may contain more than one certificate.
    The HTTPS server presents a chain of certificates, starting with its own certificate. Next is the certificate of the Certification Authority (CA) that issued the server certificate, followed by the issuer of the CA certificate, and so on. The last certificate in the chain is usually a "root CA certificate", issued by itself.
    You must import the last certificate. This certificate is already selected in the drop-down list. Details of the selected certificate are displayed in the dialog box.
  10. In the Alias field, specify a short name for the certificate. This alias is stored in lower case in the trust store. Click Finish. The certificate is now present in the Certificates table.
  11. Click Check again. A "Check succeeded" dialog box is displayed.
  12. Click OK. The Preferences dialog box is closed.