X-Git-Url: https://gerrit.onap.org/r/gitweb?p=aaf%2Fauthz.git;a=blobdiff_plain;f=conf%2FCA%2Ftruststore.sh;fp=conf%2FCA%2Ftruststore.sh;h=0414c486366dcad305174c502fcd607a2684331e;hp=399048cb87645fe8b5daa79ac43444158df57ff5;hb=65c40b3bffb78a1a77d82fc74bbf633a6d0d906f;hpb=c23f2cdcda93f260e26781dfa59dfe2b89c77402

diff --git a/conf/CA/truststore.sh b/conf/CA/truststore.sh
index 399048cb..0414c486 100644
--- a/conf/CA/truststore.sh
+++ b/conf/CA/truststore.sh
@@ -1,2 +1,5 @@
+
 echo "FYI, by convention, truststore passwords are 'changeit', but you may add something more sophisticated"
-openssl pkcs12 -export -name AAF_Root_CA -in certs/ca.crt -nokeys -out truststore.p12
+# PCKS12 does not appear to be able to mark CAs as Trusted
+# openssl pkcs12 -export -name AAF_Root_CA -in certs/ca.crt -nokeys -out truststore.p12
+keytool -importcert -file certs/ca.crt -trustcacerts -alias AAF_ROOT_CA -keystore truststore.jks