To generate certificates:
- Verify that the keytool command is in your path.
- Use the keytool command to generate a new signature processing certificate.
- Navigate to the \sso subfolder. For example:
\omnigen\omnigendata\sso
- Type the following:
keytool –genkey –alias wso2sign –keyalg RSA –keysize 2048 –keypass wso2carbon -storepass wso2carbon -validity 3650 -keystore wso2carbon.jks
- Respond to the questions prompted by the keytool command using your site details, as shown in the following example:
- Reply to the question What is your first and last name? with your Omni Governance Console (OGC) server’s host name (for example, iwserveribi.com).
- Use the keytool command to generate a new encryption certificate.
- From the \sso subfolder, type the following:
keytool –genkey –alias wso2encr –keyalg RSA –keysize 2048 –keypass wso2carbon -storepass wso2carbon -validity 3650 -keystore wso2carbon.jks
- Reply to the question What is your first and last name? with your Omni Governance Console (OGC) server’s host name (for example, iwserveribi.com).
- Type the keytool -list command, as shown in the following example:
- Verify that the certificates are stored in the proper keystore (under \omnigen\omnigendata\sso).