How to import Java Certificates to the System store
If you ever had the need to import Java certificates to the System store, you might find it difficult because when you wanted to do that you could see that the Import button for the System store has been grayed out.
To achieve this here’s what has to be done:
Open Java Control panel through Windows Control Panel or in the run prompt type the following command:
javaws -viewer
Close the first popup/cache info screen and on the Security tab click on the Certificates button.
Import certificates under the User store by clicking the import button.
Once you have imported all of the certificates create the following folders:
C:\Windows\Sun\Java\Deployment
In this location, we should copy all of the certificates that were previously imported in the User store using Java Control panel.
Along with that we should create two files:
deployment.config
deployment.properties
Open deployment.config file in notepad and insert the following line:
deployment.system.config=file\:
C\:/Windows/Sun/Java/Deployment/deployment.properties
Open deployment.properties file in notepad and insert the following line:
deployment.system.security.trusted.certs=
C\:\\Windows\\Sun\\Java\\Deployment\\trusted.certs
Now, we should navigate to this path:
C:\Users\%userprofile%\AppData\LocalLow\Sun\Java\Deployment\security
Where you should replace %userprofile% with your username.
Copy the trusted.certs file from
C:\Users\%userprofile%\AppData\LocalLow\Sun\Java\Deployment\security
to
C:\Windows\Sun\Java\Deployment
You’re done.
Imported certificates should be now visible under System store in Java Control Panel and should be in use for each user that logs on that Server.
You can also use exception.sites list in the same way by copying the exception.sites file from C:\Users\%userprofile%\AppData\LocalLow\Sun\Java\Deployment\security
to C:\Windows\Sun\Java\Deployment
Now add the following line to deployment.properties file using Notepad:
deployment.user.security.exception.sites
=C\:\\Windows\\Sun\\Java\\Deployment\\exception.sites
Thank you so much. You are the only one who explained how to create trusted.cert file (by importing it and taking the file from your app date in the profile folder)
I’m glad it helped! Thanks for your comment!