Identifying a Relevant TrustStore for SSL Certificates

Veracode Integrations Security and Troubleshooting

Publication
Veracode Integrations Security and Troubleshooting
Edition date
2022-11-17
Last publication
2022-11-17T20:57:22.572229

After creating an SSL certificate you want to use with Veracode integrations, verify which Java Runtime Environment to use with the TrustStore.

Java includes the file \lib\security\cacerts, which is the TrustStore for that Java Runtime Environment (JRE). However, you can install multiple JREs on a single machine, and some products install and use a default Java Development Kit (JDK) and JRE. You must determine which JRE to use.

Product Default TrustStore User-customized JRE Location
C# wrapper
  1. Run certmgr.msc.
  2. Navigate to Trusted Root Certificate Authorities > Certificates.
Not applicable
Eclipse/RAD %JAVA_HOME%\lib\security\cacerts In Eclipse, select Window > Preferences > Java > Installed JREs
IntelliJ C:\Program Files\JetBrains\IntelliJ IDEA Community Edition {version}\jre{32/64}\lib\security\cacerts
  1. Open Find Action.
  2. Find "Switch Boot JDK".
  3. Identify the JDK in use.
Java wrapper [%JAVA_HOME%\lib\security\cacerts] Not applicable
Jenkins Jenkins Server: C:\{Jenkins_install_dir}\jre\lib\security\cacerts
  1. Navigate to http://{Jenkins_url}/systeminfo
  2. Identify the value next to java.home.
TeamCity C:\{TeamCity_install_dir}\jre\lib\security\cacerts
  1. Open {build_agent_directory}\buildAgent.properties in a text editor.
  2. Search for the env.JAVA_HOME property.
  3. If you see env.JAVA_HOME, it is in the specified directory of the property. Otherwise, it is the default.
Visual Studio
  1. Run certmgr.msc.
  2. Navigate to Trusted Root Certificate Authorities > Certificates.
Not applicable