Sonal, Pls find my reply.(you can find these in TEC438803) 1. If I’ll get the company provided private key how I’ll create the .keystore file which will required in NSA? Sundar--> The .keystore will be there in /clarity/config/.keystore.you need the import the new certificate(private key) in the keystore which you got from your company. Installing a Certificate:-Import the reply from the certificate authority and replace your self-signed certificate with a chain of certificates.At the bottom of the chain is the certificate issued by the certificate authority that authenticates your public key. The next certificate in the chain is one that authenticates the certificate authority's public key. To create the CSR: 1 On Clarity’s NSA application server, run the following command: keytool -import -keystore / /config/.keystore -keyalg RSA -file clarity.cer â€"trustcacerts keytool -import -keystore /shared/filestore/niku6/config/.keystore -keyalg RSA -file /niku/clarity/config/ wwiseapp.gdc.standardchartered.com.cer -trustcacerts Note: You may need to import your certificate authority’s root intermediate Certificate into your keystore before you import your certificate. For moreinformation, see your certificate authority documentation.Enter the keystore password and press Enter.To complete the import, enter "yes".You now have a keystore file that contains your private key which is now paired with the signed certificate from your certificate authority.
2. Is there any way to generate the private key? sundar--> The Private Key is a file created from the host address, company name, and location. This is paired with a Public Key. 3. Is .keystore file combined both private key and public key? sundar--> Yes. Java uses another container file called the Keystore File. This can be named anything, and located anywhere. In NSA you enter this file location under the Security tab of Server Properties. It is protected by a password, which you also enter in NSA. The most important point here is that the keystore contains your private key. You cannot extract your private key from this file. You can only create a private key by placing it in a keystore file. A keystore file can contain multiple private/public key pairs. They are differentiated by an alias. If you do not specify an alias, the default alias 'mykey' is used. Regards,sundar