Question

3
Replies
1558
Views
VudumulaC Member since 2016 10 posts
Cognizant Technology Solutions
Posted: 1 year ago
Last activity: 1 year 4 months ago
Closed
Solved

What is the difference between Truststore and Keystore mentioned in WS-Security profile of Connect-SOAP rule in Pega

Hi ,

Can anyone please explain what is the exact difference between Truststore and Keystore mentioned in WS-Security profile of Connect-SOAP rule in Pega 7.1.7. What type of certificates(.cer,.jks, etc) we need to mention in Truststore and Keystore.

Data Integration
Close popover
Moderation Team has archived post
Posted: 1 year ago

Hi,


Main difference between trustStore and keyStore is that trustStore (as name suggest) is used to store certificates from trusted Certificate authorities(CA) which are used to verify certificate presented by Server in SSL Connection while keyStore is used to store private key and own identity certificate which program should present to other parties (Server or client) to verify its identity.


For more info please go through the below links.

https://javarevisited.blogspot.com/2012/09/difference-between-truststor…

http://www.java67.com/2012/12/difference-between-truststore-vs.html


 


Thank You,

Accepted Solution
Posted: 1 year ago

The difference is that keystore data has private key whereas in general truststore only has public certificate (both of them can be saved as jks type but content is different). For example, when you access an ws-security enabled webservice, you will need to import the public certificate of the webservice to the truststore. Pega, in this case, is a client. The truststore import means that Pega trusts the webservice endpoint.
Share this page LinkedIn
Copied!