Creating HTTP server keys

The IBM HTTP server key file stores certificates used by the IBM HTTP server.

To create IBM HTTP server (IHS) keys using the IBM HTTP server Key Management Utility, do the following

  1. Stop the IBM HTTP server if it is currently running.
  2. Start the IBM HTTP server Key Management Utility tool by doing the following:
    • On Windows, Click Start > Programs > IBM HTTP Server 6.0.2 > Start Key Management Utility.
    • On UNIX systems and Linux, Navigate to the /opt/rational/common/rwp/IHS/bin directory and enter the command: ./ikeyman.
  3. Ensure you have the location of the keystore file you created, such as C:\Program Files\Rational\common\rwp\IHS\key.kdb , before performing this step. Click Key Database File > New and enter the following information, and then click OK:
    • For Key Database Type, enter CMS key database file
    • For Location, on Windows, enter drive letter:\Program Files\Rational\Common\rwp\IHS\. On UNIX systems and Linux, enter /opt/rational/common/rwp/IHS/.
  4. Enter key.kdb as the new keystore file name.
  5. At the password prompt, enter a password, and then confirm it. This password protects the key file you are creating.
    Note: You can optionally set a password expiration time in days. If you enter 365 days, a new password must be created after 365 days.
  6. Ensure Stash the password to a file is checked. When you check this option, the HTTP Server is allowed access to the certificates contained in the keystore file by using the password.
  7. Click OK
  8. Restart the IBM HTTP server.


Feedback