Question
What is the difference between Truststore and Keystore mentioned in WS-Security profile of Connect-SOAP rule in Pega
Hi ,
Can anyone please explain what is the exact difference between Truststore and Keystore mentioned in WS-Security profile of Connect-SOAP rule in Pega 7.1.7. What type of certificates(.cer,.jks, etc) we need to mention in Truststore and Keystore.
Pegasystems Inc.
IN
Hi,
Main difference between trustStore and keyStore is that trustStore (as name suggest) is used to store certificates from trusted Certificate authorities(CA) which are used to verify certificate presented by Server in SSL Connection while keyStore is used to store private key and own identity certificate which program should present to other parties (Server or client) to verify its identity.
For more info please go through the below links.
https://javarevisited.blogspot.com/2012/09/difference-between-truststore-vs-keyStore-Java-SSL.html
http://www.java67.com/2012/12/difference-between-truststore-vs.html
Thank You,
Accepted Solution
Pegasystems Inc.
US
The difference is that keystore data has private key whereas in general truststore only has public certificate (both of them can be saved as jks type but content is different). For example, when you access an ws-security enabled webservice, you will need to import the public certificate of the webservice to the truststore. Pega, in this case, is a client. The truststore import means that Pega trusts the webservice endpoint.
Cognizant Technology Solutions
IN
Thanks KevinZheng_GCS. It's clear now.