InfoCenter Home >
5: Securing applications -- special topics >
5.5: Tools for managing keys >
5.5.6: Tools for managing certificates and keys >
5.5.6.1: The CFWK tools for certificate and key management

5.5.6.1: The CFWK tools for certificate and key management

WebSphere provides command-line tools for managing certificates and keyrings in the com.ibm.cfwk.tools Java package, which contains four tools:

  • KeyGenTool, which generates keys
  • MakeCertRequest, which generates certificate requests
  • MakeCertTool, which generates certificates
  • VaultTool, which is used to manage the certificate database
You can do all the necessary work for managing certificates and keyrings with these tools. The first three tools are single-purposes commands; there is only one way to run each. The last, VaultTool, supports of suite of subcommands.

Using the tools

To use the certificate-management tools, you must put the files cfwk.zip and cfwk-tools.zip at the front of your classpath. These files are located in the AppServer/lib directory of the WebSphere installation. For example, on Windows NT, set the CLASSPATH variable as shown:

set classpath=<WS-install>\AppServer\lib\cfwk.zip;<WS-install>\AppServer\lib\cfwk-tools.zip;%CLASSPATH%

Go to previous article: Tools for certificates and keys Go to next article: MakeCertRequest

 

 
Go to previous article: Tools for certificates and keys Go to next article: MakeCertRequest