Signing Java Applets:
| No. | Description | Detail/Example |
| In the Dev Environment: | ||
| 1. | Create a folder and place all the jar files for the application inside. | Mkdir s3idcertstore |
| 2. | Open CMD and move to the jar folder from step 1. | Cd\s3idcertstore |
| 3. | Create a keystore | “C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool” -genkey -keystore myKeystore -alias geoff -validity 9999 |
| 4. | Add a basic MANIFEST.MF file in an META-INF folder to the jar file we want to sign. | Manifest-Version: 1.0
Created-By: 1.7.0_71 (Oracle Corporation) Application-Name: acms Permissions: all-permissions |
| 5. | Sign the jar file | “C:\Program Files (x86)\Java\jdk1.7.0_71\bin\jarsigner” -keystore myKeystore acms.jar geoff |
| 6. | Export the certificate so that it can be imported on a client PC. | “C:\Program Files (x86)\Java\jdk1.7.0_71\bin\keytool” -exportcert -keystore myKeystore -alias geoff -file S3ID.cer |
| On the client PC: | ||
| 1. | Import certificate into trusted root certificate store. | certmgr.msc |
| 2. | Update file permissions on client to allow java folder bin and lib folder update for allocator use. Also allow S3ID folder creation. | |
| 3. | Run application without warnings or policy file update. | |