Hi Saurav,
Addition to Holger, you can use ‘keytool’ in java to manage certificates.
Your security department might already have the required private certificate(keystore) signed by trustworthy CA (CertificateAuthority).
If server’s certificate is signed by a CA that the client also trust, there’s no need of sending certificates to the client.
Clients will accept the server’s certificates based on the trust on CA.
Otherwise, you have to share the public key with the client, so that client can validate/trust the server.
Similarly, as a server, you should have either client’s public certificates or certificates of CA in truststore to validate the clients.
For certificate based authentication of MFT users, you have the details in the ActiveTransfer guide.
Please let us know if these answers your query.
Regards
Biswa
#B2B-Integration#Managed-File-Transfer#webMethods