Does Sailpoint support using the Windows certificate store in IdentityIQ when run in windows server environments? If so, is there a guide for switching to that from the Java keystore? Not just for tomcat, but for all of IdentityIQ.
The reason I want to do that is in our environment, there is a team that manages TLS certificates (issuing, renewals, etc) and they have a process to automatically issue new certificates to the servers when it is time for renewal, to add new Root CAs, etc. However, they can’t do it for Java keystores. I know that the Java runtime can be executed with a parameter that tells it to use the platform certificate storage rather than the Java keystore, but I don’t know what stipulations that brings to the overall IdentityIQ environment, or whether Sailpoint would support us doing that.
If this is not supported by Sailpoint, then are there any commonly used Java libraries that I can call to use the Windows certificate store for specific REST API calls that I need to make to applications that connect to Sailpoint using my own custom code?