Skip to main content Skip to complementary content

Converting SSL certificates to Java KeyStore

Before you begin

  • You have a service configured with SSL available to call.
  • You have a valid JDK installation with Java keytool available.
  • You have an SSL Certificate file named ServerCertificate.cer, for example.
  • You have a certificate provided by your web service provider from server trust named ClientAuth.pfx, for example.


  1. Run the following code to generate a keystore named webservice.jks from ServerCertificate.cer.
    keytool -importcert -keystore webservice.jks -storepass talend -alias –file ServerCertificate.cer
  2. Run the following command to convert ClientAuth.pfx into a JKS file named clientcert.jks.
    keytool -importkeystore -srckeystore ClientAuth.pfx -srcstoretype pkcs12 -destkeystore clientcert.jks –deststoretype JKS

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!