Menu

Wednesday 10 May 2017

Creating a self-Signed certificate using command line (WebSphere® Application Server)



Step 1: To create key database file 

 Go to location /IBMIHS/HTTPServer/bin { IHS bin }

Commmand :

./gskcmd -keydb -create -db samplecert.kdb -pw 123456 -type cms  -expire 120 -stash samplecert.sth


Syntax :  <ihsinst>/bin/gskcmd -keydb -create -db <filename> -pw <password> -type
          <cms | jks | jceks | pks12> -expire <days> -stash <filename_of_key_database>.sth



Screenshot 1:


Reference Link : https://www.ibm.com/knowledgecenter/




Step 2: Creating a self-signed certificate.


Commmand :

./gskcmd -cert -create -db samplecert.kdb -pw 123456 -size 2048 -dn CN=*.samplecert.com,O=MB,L=MUM,ST=Maha,C=IN  -label samplecertificate -default_cert yes  -expire 365  -san_dnsname www.samplecert.com -san_emailaddr middlewarebox@gmail.com   -san_ipaddr 192.168.0.28  -sig_alg SHA1WithRSA   -ca true


Syntax :   gskcmd -cert -create -db <filename> -pw <password> -size <2048 | 1024 | 512> -dn <distinguished_name>
          -label label> -default_cert <yes | no> - expire <days> -san dnsname <DNS name value>[,<DNS name value>]
          -san emailaddr <email address value>[,<email address value>]
          -san ipaddr <IP address value>[,<IP address value>][-ca <true | false>]



Screenshot 2:

  
Refrence Link : https://www.ibm.com/knowledgecenter/




Step 3: To check the .kdb using ikeyman tool through GUI.


Screenshot 3:





Next topic : Create-certificate-request



Thanks :-) !







No comments:

Post a Comment