Your well-known trusted roots file is located at C:\Program Files\Novell\jre\lib\security\cacerts. If any service provider uses SSL and the service provider's certificates are signed by a certificate authority that is not in this keystore, you will need to import the trusted root from the service provider's certificate to this keystore. Use the following command to import the service provider's trusted root from the keystore:
C:Program Files\Novell\jre\bin\keytool -import -v -file <trustedroot.crt> -alias serviceprovidertrustedroot -keystore C:\Program Files\Novell\jre\lib\security\cacerts -storepass changeit
where <trustedroot.crt> is replaced with the path and file name of your service provider's trusted root file.