I'm trying to set my site up to require secure connections, following the documentation at

Novell Documentation

I have secured LDAP with no problem. Moving on to "Securing HTTP Browser Connections," it calls for creating a new keystore. Do I actually need to make a new keystore at this point, or should I add the server and CA certificates to the keystore I created when securing LDAP?

My other question is, must the imported keys be server-specific and in .der format, or can I use the same commercial wildcard certificate I use for my other web services? Both that and the commercial CA trusted root are in .crt format.

Any help will be greatly appreciated. Vibe is catching on quickly here, but I need to secure web connections before I can make it accessible to users outside the LAN.