Posted: 6 May 2019 6:47 EDT Last activity: 6 May 2019 9:27 EDT
What is the difference between Truststore and Keystore mentioned in WS-Security profile of Connect-SOAP rule in Pega
Can anyone please explain what is the exact difference between Truststore and Keystore mentioned in WS-Security profile of Connect-SOAP rule in Pega 7.1.7. What type of certificates(.cer,.jks, etc) we need to mention in Truststore and Keystore.
Main difference between trustStore and keyStore is that trustStore (as name suggest) is used to store certificates from trusted Certificate authorities(CA) which are used to verify certificate presented by Server in SSL Connection while keyStore is used to store private key and own identity certificate which program should present to other parties (Server or client) to verify its identity.
The difference is that keystore data has private key whereas in general truststore only has public certificate (both of them can be saved as jks type but content is different). For example, when you access an ws-security enabled webservice, you will need to import the public certificate of the webservice to the truststore. Pega, in this case, is a client. The truststore import means that Pega trusts the webservice endpoint.