In this section, we walk through on creating Keystore and truststore SSL certificates using Java keytool utility. JDK must be installed on the system. The keytool utility is available in JAVA_HOME\bin directory
Create a directory to store the certificates
<pre><code>mkdir C:\certificates
cd certifaces
</code></pre>Create a Keystore certificate
Issue the below command to create keystore certificate. Replace localhost with your FQDN and password with your own password. The password you provide here is the Identity Store password
<pre><code>keytool.exe -genkey -keyalg RSA -alias localhost -keystore keystore.jks -storepass password123 -validity 360
</code></pre><img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1619596458462/DQhS5XTbZ.png" alt="030117_0457_Howtocreate3.png" />
Export the Certificate to add it into Truststore
Export the certificate so that we can use it in the Truststore.
<pre><code>keytool.exe -export -alias localhost -file localhost.cer -keystore keystore.jks
</code></pre><img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1619596494717/T5WexLGN_.png" alt="030117_0457_Howtocreate4.png" />
Create a Truststore certificate
Create a Truststore certificate. Input the Truststore password at the end as shown in the image. The password you provide here is the Trust Store password
<pre><code>keytool.exe -import -v -trustcacerts -alias localhost -file localhost.cer -keystore truststore.jks
</code></pre><img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1619596535552/8jGa3Gf98.png" alt="030117_0457_Howtocreate5.png" />

In this section, we walk through on creating Keystore and truststore SSL certificates using Java keytool utility. JDK must be installed on the system. The keytool utility is available in JAVA_HOME\bin directory

 
Create a directory to store the certificates


```
mkdir C:\certificates
cd certifaces
``` 
Create a Keystore certificate

Issue the below command to create keystore certificate. Replace localhost with your FQDN and password with your own password. The password you provide here is the Identity Store password

 
```
keytool.exe -genkey -keyalg RSA -alias localhost -keystore keystore.jks -storepass password123 -validity 360
``` 


![030117_0457_Howtocreate3.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1619596458462/DQhS5XTbZ.png)


Export the Certificate to add it into Truststore

Export the certificate so that we can use it in the Truststore.

 
 
```
keytool.exe -export -alias localhost -file localhost.cer -keystore keystore.jks
``` 


![030117_0457_Howtocreate4.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1619596494717/T5WexLGN_.png)


Create a Truststore certificate

 

Create a Truststore certificate. Input the Truststore password at the end as shown in the image. The password you provide here is the Trust Store password

 
```
keytool.exe -import -v -trustcacerts -alias localhost -file localhost.cer -keystore truststore.jks
```


![030117_0457_Howtocreate5.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1619596535552/8jGa3Gf98.png)


thuchoang

thuchoang

Weblogic - How to create a Self-Signed Keystore and Truststore SSL Certificates?