Testdriver uses HTTPS for secure communication over a computer network. The authentication aspect of HTTPS may require some environments to have their own custom self-signed certificate. This section will explain how to generate, import, and trust a self-signed certification, in both Java KeyStore (.jks) and PKCS12 formats.
Generate a self-signed certificate
Example: generate a self-signed Java KeyStore (.jks) certificate
"C:\Program Files\Java\jdk1.8.0_152\bin\keytool" -genkey -keyalg RSA -alias testdrv -keypass testpsw22 -storepass testpsw22 -keystore keystoretest.jks -validity 5 "C:\Program Files\Java\jdk1.8.0_152\bin\keytool" -export -alias testdrv -storepass testpsw22 -file testdrv.cer -keystore keystoretest.jks "C:\Program Files\Java\jdk1.8.0_152\bin\keytool" -import -v -trustcacerts -alias testdrv -file testdrv.cer -keystore cacerts.jks -keypass testpsw22 -storepass testpsw22
Please note that the first keystoretest.jks file will need to be imported. If the service hangs, please press Restart in the Testdriver user interface.
Example: generate a self-signed PKCS12 certificate
"C:\Program Files\Java\jdk1.8.0_152\bin\keytool" -genkey -keyalg RSA -alias TestDriverPkcs12 -keypass testpsw22 -storepass testpsw22 -keystore tdkeystore.p12 -storetype PKCS12 -validity 3 "C:\Program Files\Java\jdk1.8.0_152\bin\keytool" -export -alias TestDriverPkcs12 -storepass testpsw22 -file testdriverpkcs12.cer -keystore tdkeystore.p12 -storetype PKCS12 "C:\Program Files\Java\jdk1.8.0_152\bin\keytool" -import -v -trustcacerts -alias ImportedTestDriverPkcs12 -file testdriverpkcs12.cer -keystore tdkeystore.p12 -keypass testpsw22 -storepass testpsw22 -storetype PKCS12
Users may specify different passwords (-keypass and -stoepass flags), and validity duration (-validity flag) (in days).
Please note that the first tdkeystore.p12 file will need to be imported. If the service hangs please press Restart in the Testdriver user interface.
How to import the certificate
Once the certificate has been generated, it can be imported using the Testdriver Admin Tool.
- In the Testdriver Admin tool, select the Service screen
- Select Import Custom Certificate
- After selecting the certificate file, Testdriver will ask for its password. Pressing Enter saves the file and the password. The password can be modified in the field as many times as needed. Press the Enter key will save the data.
The custom certificate can be removed by clicking the Remove Custom Certificate button. If this is done, then Testdriver will use its built-in default self-signed certificate.
Since all communication (Admin Tool, Client, Service) uses HTTPS, you must have a trusted certificate otherwise requests may fail. You can always default to the built-in certificate and re-import custom ones if needed.