InfoCenter Home > 5.5.6.1.3: The MakeCertTool toolThis command generates a certificate. Syntax: java com.ibm.cfwk.tools.MakeCertTool [--serial U_serial] [--from U_fromdate] [[--to U_todate] | [--for U_for]] [--issuer U_X500Name] [--subject U_X500Name] [--sign-alg U_signalg] [--sign-key U_keyfile] [--subject-key U_keyfile] [--cert-file U_certfile] Arguments:
Examples:java com.ibm.cfwk.tools.MakeCertTool --serial 0 --for 2y --issuer "cn=WebAS Test CA, OU=SWG, O=IBM, c=US" --sign-alg "MD5 with RSA" --sign-key d:\projects\websphere\keyrings\WebAS.TestCA.key --cert-file d:\projects\websphere\keyrings\WebAS.TestCA.cert Creating certificate... The example above creates a self-signed certificate for TestCA. It uses the MD5 digest function and TestCA's public key to sign the certificate. (Since the subject and the issuer are the same, the certificate is "self-signed.") The resulting certificate is stored in a file called WebAS.TestCA.cert. java com.ibm.cfwk.tools.MakeCertTool --serial 0 --for 2y --issuer "cn=WebAS Test CA, OU=SWG, O=IBM, c=US" --subject "cn=WebAS Test Server, OU=SWG, O=IBM, c=US" --sign-alg "MD5 with RSA" --sign-key d:\projects\websphere\keyrings\WebAS.TestCA.key --subject-key d:\projects\websphere\keyrings\WebAS.TestServer.key --cert-file d:\projects\websphere\keyrings\WebAS.TestServer.cert Creating certificate... The example above creates a certificate for the TestServer signed by the TestCA. The server's certificate includes the server's public key and is signed by the issuing CA (our TestCA) using the MD5 digest function and the TestCA's public key. The server's certificate is placed in a file called WebAS.TestServer.cert.
|
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|