|
Problem(Abstract) |
When creating a .kdb file with iKeyman an error occurrs
while inserting keys to the database. |
|
|
|
Cause |
This error can be caused by expired root Certificate
Authorities (CA) or by a product defect. |
|
|
Resolving the
problem |
If you have an expiring CA or Intermediate certificates in
the keystore. and then attempt to create a new .kdb file, you
receive the following message from the iKeyman utility that is used to
create .kdb files:
An error occurred while inserting keys
to the database |
This problem is fixed in the latest GSKit interim fix which is available
from Recommended
fixes for IBM HTTP Server.
When you run IBM® HTTP Server on the same machine with WebSphere®
Application Server, you might continue to get this error, even if you
apply the interim fixes or if you work with the iKeyman from the latest
GSKit. It is possible that the gskikm.jar file located under the
WebSphere® Application Server /java directory must be replaced
also. To do this, peform the following steps:
- Stop all Web server related processes, including WebSphere Application
Server.
- Backup the gskikm.jar file by renaming it (for example,
gskikm.jar.old). This JAR file is located in the following
directory:
install_root/java/jre/lib/ext/gskikm.jar |
|
- Copy the gsk7cls.jar file from the GSKit Classes installation
location (on Solaris, /opt/ibm/gsk7/classes) to the following
directory:
install_root /java/jre/lib/ext/ |
|
Note: Do not rename or delete the
gsk7cls.jar file in the GSKit Classes location. |
|
- In install_root/java/jre/lib/ext, rename
gsk7cls.jar to gskikm.jar.
If WebSphere and IBM HTTP Server are on different systems, and you still
get the same error after updating the GSKit, then copy the JAR from
gsk/classes to lib/ext.
For example:
To update to GSKit 7.0.3.17, copy the JAR into the /jre
directory:
- From:
/opt/ibm/gsk7/classes/gsk7cls.jar
- To: java/jre/lib/ext/gskikm.jar
|
|
|
|
|
Cross Reference information |
Segment |
Product |
Component |
Platform |
Version |
Edition |
Application Servers |
IBM HTTP Server |
SSL |
|
|
|
|
|
|