All docs This doc

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


  • wso2carbon.jks: This keystore contains a key pair and is used by default in your SP servers for all of the purposes explained above, except protecting sensitive information via Cipher tool
  • securevault.jks: This is the default keystore used by the secure vault to protect sensitive information via Cipher tool.
  • client-truststore.jks: This is the default trust store, which contains the trusted certificates of the keystore used in SSL communication.


You can view the default keystores and truststores in the <SP_HOME>/resources/security/ directory. Once you create your own keystore, you can delete the default keystores, but you need to ensure that they are no longer referenced in any SP profile in the <SP_HOME>/wso2/<PROFILE>/bin/ file or the <SP_HOME>/conf/<PROFILE>/deployment.yaml file file.