Before Release 10.1.2, in standalone WebLM, the default password for keystore and truststore was set as password. To add a CA certificate, you needed to enter the keystore password.

From Release 10.1.2, for security purposes, the credential store automatically generates unique passwords at random for the keystore and truststore. You no longer need to enter the keystore password, as the credential store generates different passwords every time and populates the password automatically.

You can still continue to manage certificates. For more information on managing a trust certificate, see manageCACertificates command.

Self-signed certificate

When you do a fresh install, a newly self-signed generated certificate and credential store is created with a new password.

Third-party certificate

Before Release 10.1.2, when you imported the previously configured third-party certificate along with CA, you had to provide the password you used to create the certificate. After Release 10.1.2, if you have a third-party certificate configured or an identity certificate issued by one of the third-party CAs, you need to re-import the third-party certificate after an upgrade.