Step 1: To create key database file
Go to location /IBMIHS/HTTPServer/bin { IHS bin }
Commmand :
./gskcmd -keydb -create -db samplecert.kdb -pw 123456 -type cms -expire 120 -stash samplecert.sth
Syntax : <ihsinst>/bin/gskcmd -keydb -create -db <filename> -pw <password> -type
<cms | jks | jceks | pks12> -expire <days> -stash <filename_of_key_database>.sth
Screenshot 1:
Reference Link : https://www.ibm.com/knowledgecenter/
Step 2: Creating a self-signed certificate.
Commmand :
./gskcmd -cert -create -db samplecert.kdb -pw 123456 -size 2048 -dn CN=*.samplecert.com,O=MB,L=MUM,ST=Maha,C=IN -label samplecertificate -default_cert yes -expire 365 -san_dnsname www.samplecert.com -san_emailaddr middlewarebox@gmail.com -san_ipaddr 192.168.0.28 -sig_alg SHA1WithRSA -ca true
Syntax : gskcmd -cert -create -db <filename> -pw <password> -size <2048 | 1024 | 512> -dn <distinguished_name>
-label label> -default_cert <yes | no> - expire <days> -san dnsname <DNS name value>[,<DNS name value>]
-san emailaddr <email address value>[,<email address value>]
-san ipaddr <IP address value>[,<IP address value>][-ca <true | false>]
Screenshot 2:
Refrence Link : https://www.ibm.com/knowledgecenter/
Step 3: To check the .kdb using ikeyman tool through GUI.
Screenshot 3:
Next topic : Create-certificate-request
Thanks :-) !
No comments:
Post a Comment