Personal certificates collection

Use this page to manage personal certificates.

To view this administrative console page, click Security > SSL certificate and key management > Manage endpoint security configurations > {Inbound | Outbound} > ssl_configuration. Under Related items, click Key stores and certificates > key store . Under Additional Properties, click Personal certificates.

The Personal certificates page lists all Personal certificates in the selected key store. You can do most certificate management operations in this panel, including creating a new self-signed certificate, deleting a certificate, receiving one generated from a CA, replacing a certificate (simultaneous delete and create, replacing references across all key stores), extracting the signer, and importing or exporting a personal certificate.

Personal certificate requests are temporary place holders for certificates that will be signed by a certificate authority (CA).

The Key store collection must contain at least two key store files. You must select one file in order to replace, extract, or export a key store,

Button Resulting action
Create a self-signed certificate Enables the application server to create a new self-signed certificate.

[z/OS] The Create a self-signed certificate function is not available using the administrative console for certificates that are stored in Resource Access Control Facility (RACF). This function is supported using the RACF administration interfaces.

Delete

[AIX HP-UX Linux Solaris Windows] [iSeries] Specifies to delete a certificate from the key store. Be careful that the certificate alias is not referenced elsewhere in the Secure Sockets Layer configuration.

[z/OS] The Delete function is not available using the administrative console for certificates that are stored in Resource Access Control Facility (RACF). This function is supported using the RACF administration interfaces.

Receive a certificate from a certificate authority Enables the application server to receive a certificate authority (CA)-generated certificate from a file to complete a certificate request.

[z/OS] The Receive a certificate from a certificate authority function is not available using the administrative console for certificates that are stored in Resource Access Control Facility (RACF). This function is supported using the RACF administration interfaces.

Replace

[AIX HP-UX Linux Solaris Windows] [iSeries]

Replaces a self-signed certificate with another self-signed certificate that contains the same information, but with a new expiration period. The signer from the old certificate that is contained in any managed key store in the cell is replaced by the signer from the new certificate.

[z/OS] The Replace function is not available using the administrative console for certificates that are stored in Resource Access Control Facility (RACF). This function is supported using the RACF administration interfaces.

Extract Extracts a certificate from the key store that will be added to another key store as a trusted certificate (signer).
Import Imports a certificate, including the private key, from a key store file.

[z/OS] The Import function is not available using the administrative console for certificates that are stored in Resource Access Control Facility (RACF). This function is supported using the RACF administration interfaces.

Export Exports a certificate, including the private key, to a specified key store file.

Alias

Specifies the alias by which the personal certificate is referenced in the key store.

When you select an alias, the View Certificate panel opens.

Issued by

Specifies the distinguished name of the entity by which the certificate was issued. This name is the same as the issued-to distinguished name when the personal certificate is self-signed.

Issued to

Specifies the distinguished name of the entity to which the certificate was issued.

Serial number

Specifies the certificate serial number that is generated by the issuer of the certificate.

Expiration

Specifies the expiration date of the signer certificate for validation purposes.




Related tasks
Creating a Secure Sockets Layer configuration
Related reference
Key stores and certificates collection
Reference topic Reference topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 31, 2013 4:28:44 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-mp&topic=usec_sslperscerts
File name: usec_sslperscerts.html