Update the LDAP certificate in WebSphere Java

This procedure describes how to add the certificate to the WebSphere Java cacerts file.

In most cases, the WebSphere Java cacerts file does not need to be updated on LSF or Landmark. If you have a specific reason to install the LDAP signer certificate into the WebSphere Java keystore, follow these steps. (If you are unsure, perform this procedure. Installing it does not cause harm even if it is not necessary.)

Two tools are available to perform these steps, keytool and ikeyman. The keytool utility is a command line utility delivered with Java. The ikeyman utility is a GUI utility delivered by IBM with IBM HTTP Server and IBM WebSphere. You can use either tool per your preference. This section provides steps for both tools.