Adding the server public certificate to the Eclipse client

If the IBM® Rational® Asset Manager server is only available on an https protocol, the Eclipse client cannot use the update site. To resolve this, you must add the public certificate of the server to the Eclipse client.

About this task

These instructions are for a Windows computer with a Firefox browser. Instructions for Linux are similar.

Procedure

  1. Save the certificate.
    1. Access the Rational Asset Manager web client using a browser.
    2. Double-click the security icon in the status bar. The Security window opens.
    3. Click View Certificate.
    4. In the Certificate Viewer, click the Details tab.
    5. On the Details page, click Export.
    6. In the Save Certificate to File window, select X.509 Certificate (DER) in the Save as Type list.
    7. Click Save.
  2. Optional: Create the keystore. You can use an existing keystore or create a new one. To create a new keystore, run the following command from a command prompt: 
    keytool.exe -genkey -keystore ram.keystore -storepass ibmram
    The keystore will contain the keys for the Eclipse client.
  3. Import the certificate to the keystore.
    1. From a command prompt, run the following command to import the certificate: 
      keytool.exe  -import -alias [server] -file [server].der -keystore ram.keystore -storepass ibmram
      Where server is the name of the server with Rational Asset Manager server.
    2. Type yes to accept the certificate and press Enter.
    3. Verify that the certificate was added to the keystore.
  4. Launch the Eclipse client from a command prompt using the following command: 
    eclipse -vmargs -Djavax.net.ssl.trustStore="drive:\path\to\certificate\ram.keystore" -Djavax.net.ssl.trustStorePassword=ibmram
    Where drive:\path\to\certificate\ram.keystore is the full path to the ram.keystore file. Eclipse will start and will trust the connection with the server.
Feedback