Key stores and certificates collection

Use this page to manage key store types, including cryptography, Resource Access Control Facility (RACF), Certificate Management Services (CMS), Java, and all trust store types.

Avoid trouble Avoid trouble: In most cases, having unused and expired signer certificates in a trust store does not cause problems. However, if you experience a problem because the trust store includes an unused or expired signer certificate, you can safely delete the following expired signer certificates from the dummy keystores files: gotcha

To view this administrative console page, click Security > SSL certificate and key management > Manage endpoint security configurations > Inbound | Outbound > SSL_configuration_name. Under Related items, click Key stores and certificates.

Button Resulting action
New Adds a new key store object that can be referenced by Secure Sockets Layer (SSL) configurations or KeySets. The KeyStore management scope is based on the part of the topology tree from which it was created.
Delete Deletes an existing key store. The key store should not be referenced by any other parts of the configuration before you delete it.
Exchange signers Refers to exchanging signers in a key store. You can select two key stores, along with personal certificates from a selected key store, then add them as a signer to another selected key store.

Name

Specifies the unique name that is used to identify the key store. This name is typically scoped by the ManagementScope scopeName and based upon the location of the key store. The name must be unique within the existing key store collection.

This is a user-defined name.

Path

Specifies the location of the key store file in the format needed by the key store type. This file can be a card-specific configuration file for cryptographic devices or a filename or file URL for file-based key stores.




Related tasks
Creating a Secure Sockets Layer configuration
Related reference
Key store settings
Key stores and certificates exchange signers
Reference topic Reference topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 30, 2013 8:21:57 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-express-iseries&topic=usec_sslkeystores
File name: usec_sslkeystore.html