InfoCenter Home >
5: Securing applications -- special topics >
5.5: Certificate-based authentication >
5.5.6: Tools for managing certificates and keys >
5.5.6.1: The CFWK tools for certificate and key management >
5.5.6.1.2: The MakeCertRequest tool
This tool generates a certification request, which can be sent to
a certificate authority (CA).
Syntax:
java com.ibm.cfwk.tools.MakeCertRequest [--from U_fromdate]
[[--to U_todate] | [--for U_for]]
U_X500Name
U_keyfile
U_signalg
U_csrfile
Arguments:
- --from U_fromdate
- The start date for the certificate, in the format dd/mm/yyyy
- --to U_todate
- The expiration date for the certificate, in the format dd/mm/yyyy
- --for U_for
- The lifetime of the certificate, in the format nd, where
nis an integer and d stands for "days"
- U_X500Name
- The distinguished name of the owner, in valid X.500 format
- U_keyfile
- The file holding the owner's public key
- U_signalg
- The signature algorithm, either "MD5 with RSA" or "SHA1 with RSA"
- U_csrfile
- The file in which to store the certification request
This is a general-purpose tool with applications beyond those discussed
here. This page discusses only the subset of options relevant to
managing certificates for WebSphere Application Server programs.
|
|