Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Can we load multiple Certificates & Keys in a Key Store?
Is it always required to load only Pairs (i.e. Certificates & Keys together)?
If a Key Store has multiple Certificates and Keys, which one will get selected when Java SSL tries to establish connection as a Server?
Although this depends on the KeyStore type, generally, you can store multiple private keys and certificates in a single store.
Which key and certificate combination is used for a Java-based server will depend on how the application was implemented. A number of applications let you select a given certificate using the alias name. The key and certificate getters in KeyStore take an
aliasparameter to make this choice. Usually, when this is not specified in the configuration, the application or framework will use the first suitable one it finds based on theKeyStore.aliases()enumeration.Tomcat, for example, uses the
keyAliasattribute in its Connector configuration:Regarding key pairs, some KeyStores (again, depending on the type) can be used to store
SecretKeys (e.g. DES), that is shared keys, as well as public-private key pairs.