Administrators may need to convert an SSL certificate from PFX or PKCS12 format to JKS format for use with AutoSys Workload Automation.
This process uses the KeyStore Explorer tool to modify the keystore type and entry alias.

SYMPTOMS:

• Need to import a new certificate into AutoSys

• Certificate provided in .pfx or .p12 format

• Application requires .jks format with a specific alias

• Application: AutoSys Workload Automation 12.X

• Tool: KeyStore Explorer

• File Formats: .pfx, .p12 (PKCS12), .jks (Java KeyStore)

PREREQUISITES:

• KeyStore Explorer installed

• Valid .pfx or .p12 certificate file

• Password for the certificate file

STEPS:

1. OPEN CERTIFICATE FILE

   Launch KeyStore Explorer and open the .pfx or .p12 file.

   NOTE: You must provide the password used during certificate creation.
   VERIFY: Ensure the certificate icon displays as Green (valid).

2. VERIFY CERTIFICATE CHAIN

   Double-click the entry name.

   EXPECTED: The "Certificate Hierarchy" displays the full chain (Root CA, Intermediate CA, and Server Certificate).

3. CHANGE KEYSTORE TYPE

   Navigate to the Tools menu.

   Path: Tools > Change KeyStore Type > JKS

   EXPECTED: The keystore format updates to JKS.

4. UPDATE ENTRY ALIAS

   Right-click the certificate entry and select "Rename" (or "Set Alias").

   Value: tomcat

   NOTE: AutoSys typically requires the alias to be named "tomcat".

5. SAVE AS JKS

   Navigate to the File menu to save the new file.

   Path: File > Save As File Name: [filename].jks

   EXPECTED: File saves successfully in JKS format.

Configuring a vendor issued or custom SSL certificate for WebUI/WCC, AutoSys Web Server (AEWS), CA Directory (dxserver) and EEM