1) Export the certificate(s):
a) Navigate to SDM via the browser and select 'Certificate' next to the URL
b) Select 'View certificates'
c) From the 'Details' tab select 'Copy to File...'
d) Select 'Base-64 encoded X.509 (.CER)' for the format
e) Specify a file name (i.e. c:\sdmcert1)
f) Repeat steps a to e for each certificate in the chain (root, intermediate, child)
2) Import the certificate into the Catalog 14.1 JVMs trusted certificate store:
a) Copy the certificate exported in step 1 to the Catalog server (i.e. c:\sdmcert1.cer)
b) Open a Service Catalog Command Prompt
c) Change directory into C:\Program
d) Create backup of the cacerts file and then run the following:"C:\Program Files\CA\Service Catalog\jre\bin\keytool.exe" -import -noprompt -trustcacerts -alias sdmcert1 -file c:\sdmcert1.cer -keystore cacerts -storepass changeit
In this case I specified an alias of 'sdmcert1' (you can specify an alias of your choice) and referenced the exported certificate (i.e. sdmcert1.cer).
The expected output of this command is as follows:
Certificate was added to keystore
e) Repeat the steps for each certificate in the chain. Remember to change alias for each one.
3) Restart Catalog. Repeat the steps for each Catalog node.