This documentation is for WSO2 Carbon 4.4.1. View documentation for the latest release.
Page Comparison - Setting up Keystores (v.3 vs v.4) - Carbon 4.4.1 - WSO2 Documentation
Due to a known issue do not use JDK1.8.0_151 with WSO2 products. Use JDK 1.8.0_144 until JDK 1.8.0_162-ea is released.

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


For information on creating new keystores with the required certificates, see the related links.

Default keystore settings in WSO2 products



Note the following regarding WSO2 keystore management:

  • You cannot import an existing private key for which you already have a certificate.
  • You cannot delete the default wso2carbon.jks keystore.
  • You must have the same password for both keystore and private key due to a Tomcat limitation.
  • You cannot remove a service before disabling its security.

For information on how to create new keystore files, see Creating New Keystores, and for information on how to update configuration files in your product with keystore information, see Configuring Keystores in WSO2 Products.