webMethods Broker uses a file called a truststore to store trusted roots. A trusted root is a certificate belonging to a Certification Authority (CA). The trusted root contains the CA's public key and the distinguished name of the issuing entity (referred to as the authenticator name in the Broker user interface). A truststore may contain the trusted roots for an entire certificate chain.

Truststores should be stored in a safe place on the file system to prevent unauthorized access and tampering.