A key database is a file that the server uses to store one
or more key pairs and certificates. You can use one key database for all your
key pairs and certificates, or create multiple databases.
About this task
You can create multiple databases if you prefer to keep certificates
in separate databases.
Procedure
- Create a new key database using the gsk7cmd command-line interface
by entering the following command (as one line):
<ihsinst>/bin/gsk7cmd -keydb -create -db <filename> -pw <password> -type
<cms | jks | jceks | pks12> -expire <days> -stash
- Create a new key database using the GSKCapiCmd tool. GSKCapiCmd
is a tool that manages keys, certificates, and certificate requests within
a CMS key database. The tool has all of the functionality that the existing
GSKit Java™ command
line tool has, except GSKCapiCmd supports CMS and PKCS11 key databases. If
you plan to manage key databases other than CMS or PKCS11, use the existing Java tool.
You can use GSKCapiCmd to manage all aspects of a CMS key database. GSKCapiCmd
does not require Java to be installed on the system.
<ihsinst>/bin/gsk7capicmd -keydb -create -db <name> [-pw <passwd>] [-type <cms>] [-expire <days>] [-stash] [-fips]
[-strong]