In order for single sign-on to work properly, you must configure a trust relationship with certificates between the OSP and Self Service Password Rest (SSPR). You must export a certificate from the keystore file of the OSP which is osp.jks.
After you export the certificate, you must import the certificate in to the keystore file for SSPR. The default path keystore file for SSPR is:
For more information about setting a secure channel, see
Setting Up a Secure Channel Between the Application Server and the LDAP Server in the
Self Service Password Reset Administration Guide.