This topic explains how to create an SSL certificate for
the IBM HTTP Server.
About this task
The following variable is used in path names in this topic:
- RATIONAL_COMMON
- Directory where Rational common files are installed
Procedure
- Start the IBM® HTTP Server Key Management utility.
- Click Key Database File > Open > Select Key
database type CMS and click Browse to
navigate to your keystore file, key.kdb, which is
located in the directory %RATIONAL_COMMON\IHS on
Windows and $RATIONAL_COMMON/IHS on the UNIX system
and Linux.
- Enter the keystore password and click OK
- In Key database content menu, select Personal
Certificates if you are creating a self-signed certificate,
or Personal Certificate Requests if you are
creating a certificate request to be sent to an independent certificate
authority (CA).
- If you selected Personal Certificates in
the previous step, click New Self-Signed. The Create a New Self-Signed Certificate dialog box opens. Fill
in the following fields to enter a key label for the certificate.
Attention: Do not use spaces in the key label.
- In the Version field, select X509
V3.
- In the Key Size field, select 1024.
- In the Common Name field, enter
the fully qualified address of the IBM HTTP Server, for example serverName.ibm.com.
- In the Organization field, enter
the name of your company or area.
Note: The Common
Name and Organization are required
fields of the Distinguished Name. The Organization
Unit, Locality, State/Province,
and other fields are optional.
- Select the appropriate value for the Country field.
- In the Validity Period field,
enter 365.
Then click OK.