Checking of my Self-signed Certificate

If I imported my self-signed certificate already and want to check that it is in the PAM store.

  1. Open a command line and navigate to the folder where PAM is installed $PAM_HOME and issue the following command:
    1. For Windows, substitute ALIAS_NAME with the unique identifying string for the key, and PATH_TO_CERT.der with the location and name of the .der certificate file to be imported and used by the Federated Sign-In module.

      2. Copy 
      bin\PamKeytool.cmd -v -list -keystore jre\lib\security\cacerts

    2. For Unix or Linux, substitute ALIAS_NAME with the unique identifying string for the key, and PATH_TO_CERT.der with the location and name of the .der certificate file to be imported and used by the Federated Sign-In module.

      3. Copy 
      bin/PamKeytool.sh -v -list -keystore jre/lib/security/cacerts

     

  2. After the command is issued, you will be prompted for the keystore password. Enter the value changeit and press the Enter key to continue.

The output will list all certificates currently found in the PAM store.

Please note that many well known trusted internet Certificate Authority certificate come with PAM out of the box, so you will need to search through all to locate your self-signed certificate.