The options for each command may be provided in any order.Īll items not italicized or in braces or square brackets are required to appear as is.īraces surrounding an option generally signify that a default value will be used if the option is not specified on the command line. Note:Īll command and option names are preceded by a minus sign (-). The various commands and their options are listed and described below. Keytool stores the keys and certificates in a keystore. Keytool also enables users to administer secret keys used in symmetric encryption/decryption (e.g. Integrity means that the data has not been modified or tampered with, and authenticity means the data indeed comes from whoever (See Certificates.) When data is digitally signed, the signature can be verified to check the data integrity andĪuthenticity. Some other entity has a particular value. It also allows users to cache the public keys (in the form of certificates) of their communicating peers.Ī certificate is a digitally signed statement from one entity (person, company, etc.), saying that the public key (and some other information) of Use in self-authentication (where the user authenticates himself/herself to other users/services) or data integrity and authentication services, using digital It allows users to administer their own public/private key pairs and associated certificates for Keytool is a key and certificate management utility.