Adding Entries to Encrypted Keychain Files
You must also add entries to the keychain file as described in
Setting up the Server Keychain,
but avoid using the -O flag when using the keychain script.For example, to create an entry for the local server's keystore password, use:
tools/security/bin/keychain.sh <keychain-file> <certificate-URI>
If the keychain file does not exist, add the -c option to create it:
tools/security/bin/keychain.sh -c <keychain-file> <certificate-URI>
You will be prompted for the keychain file's master password, then for a password to associate with the URI. For the URI, you must enter the same password used to secure the server's certificate in the keystore.
For example, to create an entry for server1 from the configuration example above, enter:
tools/security/bin/keychain.sh server1keychain.tkc jks:server1alias@keystore-file.jks
Terracotta Management Console - Keychain Client
Open the keychain by entering its master key: xxxxxxx
Enter the password you wish to associate with this URL: server1pass
Confirm the password to associate with this URL: server1pass
Password for jks:server1alias@keystore-file.jks successfully stored
To create an entry for server2 in server1's keychain, use:
tools/security/bin/keychain.sh server1keychain.tkc
tc://server2username@172.16.254.2:9530