Code: Select all
update-ca-trust extract
Specifically, if I drop a ton of PEM files into /etc/pki/ca-trust/source/anchors directory, then execute
Code: Select all
update-ca-trust extract
Can that file be copied into /usr/java/latest/lib/security, overwriting the cacerts file there, and still enable applications written explicitly with Oracle JAVA to execute and trust the code appropriately?
I would like to reduce my level of effort for maintaining 2 variants of JAVA (and no, we are not switching to openjdk; it is not an option), the Linux System Certificate Truststore, Citrix Receiver, the browsers of Firefox and Google Chrome.
I ran the command
Code: Select all
keytool -list -keystore cacerts -storepass changeit