To run SSL tests that require validation of a security certificate, it is necessary to import custom SSL certificates if a Web site or Web application has a custom Secure SSL Server for a Certificate Authority (CA). You must obtain a copy of the required public key file from the Web site and import it into the Experience Manager keystore library.
To get the public key file:
Use Internet Explorer* to navigate to the HTTPS Web site.
From the menu, click File > Properties.
Click the Certificate button.
Click the Certificate Path tab.
Select the root CA certificate.
Click the Details tab.
Click the Copy to file button.
Click Next.
Select Base‑64 encoded X.509 as the format.
Click Next.
Type a file name, click Next, then click Finish.
The certificate file might be the in X.509 v1, v2, or v3 format. After you have the certificate file, update the Experience Manager Monitor.
To update the Experience Manager Monitor:
Stop the Experience Manager monitor process.
Open a command line window and navigate to the /OperationsCenter_ExperienceManager_install_path/jre/bin directory.
Run the following command:
./keytool –import –keystore ../lib/security/cacerts –file <pubkey.filename.withlocation> -alias customerName
When prompted, type the password for this keystore: changeit
To verify success, run the following command and confirm that the custom certificate is listed:
./keytool –list –v –keystore ./lib/security/cacerts
You can also use this command to view a list of all current certificates.
Edit the monitor.properties file by setting tests.https.trustManagerMode=ENABLED.
Restart the monitor and test the Web site access.