32.5.7 Certificate Trust Store Objects of the Identity Server Clusters Are Deleted Randomly

When a trusted root certificate is added in Administration Console, the logs indicate that the cluster object cannot be found. As a result, the truststore objects are deleted.

Use the following API to resolve this issue:

API: GET /roma/rest/keystores/idp?repair=true

Parameters

Repair: If specified, it recreates missing keystores automatically.

If not specified, it returns the state of keystores for Identity Server clusters.

Response:

[ { "clusterName": "IDPCluster", "clusterID": "SCCw7xa8a", "status": "Keystores have been repaired" }]

This API iterates through all Identity Server clusters and recreates keystores as needed.