Exercise caution when working on the WebSphere Admin Console
Step-by-step instructions to add a signer certificate from another server in WAS for successful SSL handshake. The screenshots included are from WAS 9.0.
Login into WAS Admin Console: https://<WAS_ADMIN_HOST>:<WAS_ADMIN_PORT>/ibm/console
Go to Security (Left Nav) -> SSL certificate and key management and under Related Items section, click on Key stores and certificates link.
Click on NodeDefaultTrustStore
Under Additional Properties, Click on Signer Certificates
Click on Add button
Provide details for the certificate to be added. Then click on Apply.
Make sure the .crt file is already copied to WAS machine, for e.g. /opt/IBM/WebSphere/Profiles/DefaultAppSrv01/etc/xxxssl.crt
The certificate details can be seen as below. Click on Save.
! Note that a server restart is not required for these changes to take effect.