Integrating a CA-signed certificate into a CORBA C++ client key database file

Before you begin

You must have requested and received a new signed certificate from a certificate authority as described in Creating and sending a certificate signing request on a CORBA C++ client. After the CA sends you a new signed certificate, you need to add it to the key database file from which you generated the request.

Why and when to perform this task

Steps for this task

To receive a CA-signed certificate into a key database file, follow these steps:

  1. If you receive an e-mail from a certificate authority containing your new CA-signed certificate, save that mail in a file, for example, filename.ARM.
  2. Start the IBM Key Management tool and use it to open the key database file or cryptographic token from which you created the certificate request. If you created a request from a key database file, complete the following steps:
    1. Start the IBM Key Management tool as described in Starting the IBM Key Management tool.
    2. Open the key database file (filename.kdb) for the client for which you want to request a CA-signed certificate. To open the key database file, either click Open a key database file or select Key Database File > Open from the menu bar. Type the name and location of the key database file at the prompt.
    3. Click OK. This opens the Password Prompt window.
    4. At the prompt, type the password that you specified when you created the CMS key database file.
    5. Click OK.
    6. Select Personal Certificate Requests from the pull-down under Key database content in the middle of the window.
    7. To receive your signed certificate into the key database file, click Receive. The Receive Certificate from a File window is displayed.
    8. In the Receive Certificate from a File window, type the Certificate file name and Location for the new digital certificate, or click Browse to select the name and location.
    9. To receive your certificate, click OK. The Enter a Label window is displayed.
    10. Type a label, such as Production Certificate for MyWeb at My Company, for the new digital certificate and click OK. The IBM Key Management window is displayed. The Personal Certificates field shows the label of the new digital certificate you added.

What to do next

Continue with the next step in the overview procedure article, Enabling SSL security between a CORBA C++ client and an EJB server.

Related tasks
Enabling SSL certificate security between a CORBA C++ client and an EJB server
Creating and sending a certificate signing request on a CORBA C++ client
Starting the IBM Key Management tool



Searchable topic ID:   tcor_ssl12
Last updated: Jun 21, 2007 8:07:48 PM CDT    WebSphere Business Integration Server Foundation, Version 5.0.2
http://publib.boulder.ibm.com/infocenter/wasinfo/index.jsp?topic=/com.ibm.wasee.doc/info/ee/corba/tasks/tcor_ssl12.html

Library | Support | Terms of Use | Feedback