Geronimo provides GBeans to manage the JSSE keystores and encrypt passwords. In this section, we will see how these GBeans can be used to manage the keystores and how digital certificates; encrypt passwords are saved to the config.xml
file and the properties files used with security realms.
JSSE keystores are used to store cryptographic keys and digital certificates. Geronimo provides GBeans to create and manage keystores and digital certificates. The FileKeystoreInstance
class wraps a keystore file stored on a filesystem. The FileKeystoreManager
class provides the ability to manage keystores in a filesystem directory. The digital certificates are used to configure SSL connectors in Geronimo.
The Keystores portlet in the Administration Console provides a convenient way to access the functionality provided by Geronimo. The functions provided are: