You are viewing the Apigee Management API reference documentation. For the main product docs, and to search all docs, go to

Create a Keystore or Truststore

Resource Summary


Content Type

application/json, text/xml


Keystores and Truststores,



Create a Keystore or Truststore

Create a keystore or truststore in an environment.

  • Keystore: Contains the TLS certificate and private key used to identify the entity during TLS handshaking.
  • Truststore: Contains trusted certificates on an TLS client used to validate an TLS server's certificate presented to the client. These certificates are typically self-signed certificates or certificates that are not signed by a trusted CA.

To configure functionality that relies on public key infrastructure (TLS and SAML, for example) you need to create keystores and truststores that provide the necessary keys and digital certificates. Keystores and truststores define repositories of security certificates used for TLS encryption.

The APIs that you use to create a truststore are the same as used to create a keystore. The only difference is that you pass the cert file as a PEM file instead of a JAR file.


Keystore names can contain only alphanumeric characters.

See Keystores and Truststores.

Resource URL /organizations/{org_name}/environments/{env_name}/keystores

Header Parameters

Name Values Description

Specify Content Type as either application/json or text/xml

Request Body

Name Description Default Required?
name The keystore or truststore name.   Yes

org_name Mention the organization name true

env_name Mention the environment name true

HTTP Basic

OAuth 2.0



Make a request and see the response.

Make a request and see the response.

Make a request and see the response.


Help or comments?

  • If something's not working: Ask the Apigee Community or see Apigee Support.
  • If something's wrong with the docs: Click the "Send Feedback" button.
    (Incorrect? Unclear? Broken link? Typo?)