OIM and Java Connector Server SSL Establishment

keytool -genkey -keyalg RSA -alias selfsigned -keystore keystore.jks -storepass password -validity 360 -keysize 2048


keytool -export -alias selfsigned -file selfsigned.cer -keystore keystore.jks


Once keystore is created and certficate file is exported

Re-register the Java Connector service with 

ConnectorServer.exe /uninstall

ConnectorServer.exe /install -Djavax.use.ssl=true -Djavax.ssl.keystore=keystore.jks

Restart the Java Connector Server.

Copy the selfsigned.cer and import the certificate to cacerts, demo-trust and hostname-truststore.jks (oim)



keytool -import -trustcacerts -alias selfsigned -file selfsigned.cer -keystore cacerts