Hello,

Here is some initial information on this.  If you had any further questions my recommendation would be to open a technical support track. 

The application properties file for the server or the Java keystore for a client points to the keys.  The https part of the URL will go fetch the keys from the keystore based on hostname

Like:

server.port=8443

server.ssl.key-store=classpath:keystore.jks

server.ssl.key-store-password=password

server.ssl.key-alias=selfsigned

-Juan

Hello @psmerill,

in addition to what @JuanM suggests:

- you might want to have the certificate path (CA, Intermediates and server certificate, in that order) in PEM - base64 format.

- Then you can import them to your SAS Private JRE, if SAS 9.4, or your Java verison used by SAS if SAS 9.3 or earlier.

a) You can import them with SAS Deployment Manager, if you are in SAS 9.4 

http://support.sas.com/documentation/cdl/en/secref/69831/HTML/default/viewer.htm#n1g06e7anjkl1cn1qdo... for UNIX

http://support.sas.com/documentation/cdl/en/secref/69831/HTML/default/viewer.htm#p188ovr3r9is2mn1bot... for Windows

b) you could also use a nice Java tool, to connect to the external web server and automatically import the certificates in your keystore http://support.sas.com/kb/57/370.html

After you do this, it is possible that you might need to restart some RTDM services, so the JVMs would take the right certificates.