Creating a self-signed certificate for the HTTP server
- Start the IBM HTTP server Key Management Utility tool (if it is
not already running).
- Click Key Database File > Open > Select Key database
type CMS and click browse to navigate to your key store file (key.kdb).
- Enter the keystore password and click OK
- In Key database content, click the drop
down menu and select Personal Certificates (if you
are creating a self-signed certificate) or Personal Certificate
Requests (if you are creating a certificate request to be sent
to an Independent certificate authority (CA)).
- If you are creating a self signed certificate, click New
Self-Signed. The Create a New Self-Signed
Certificate window opens.
- Enter a key label for this certificate by filling in the following
fields, and then click OK. Do not use spaces in the
key label.
- For the Version field, select X509 V3.
- For the Key Size field, select 1024.
- For the Common Name field, enter the fully qualified address of the HTTP
Server, for example Servername.ibm.com.
- For the Organization field, enter the name of your company or area. The
Common Name and Organization are required fields of the Distinguished Name.
The Organization Unit, Locality, State/Province, and other fields are optional.
- Select the appropriate value for the Country field.
- For the Validity Period field, enter 365.