When a trusted root certificate is added in Administration Console, the logs indicate that the cluster object cannot be found. As a result, the truststore objects are deleted.
Use the following API to resolve this issue:
API: GET /roma/rest/keystores/idp?repair=true
Parameters
Repair: If specified, it recreates missing keystores automatically.
If not specified, it returns the state of keystores for Identity Server clusters.
Response:
[ { "clusterName": "IDPCluster", "clusterID": "SCCw7xa8a", "status": "Keystores have been repaired" }]
This API iterates through all Identity Server clusters and recreates keystores as needed.