After the certificate signing request (CSR) is accepted, a certificate authority (CA) processes the request and verifies your identity. After the identity is approved, the CA sends the signed certificate back through e-mail. Store the signed certificate in a keystore database file. This procedure describes how to receive the CA-signed certificate into a keystore file using the key management utility (iKeyman). You use this utility the same way for both test certificates and production certificates. The primary difference between the two certificate types is the amount of time it takes for the CA to authenticate the principal your certificate represents. Test certificates are authenticated automatically based on some simple edit checks and returned to you within a few hours. Production certificates may take several days or a week to authenticate and return to you. If the CSR request is made for the cryptographic token, the certificate must be received into that token. If the request is made for the secondary key database of the token, the certificate must be received into that database.
Read the iKeyman documentation at http://www.ibm.com/developerworks/java/jdk/security for further information about how to receive a personal certificate into a key database file from the CA.
In this information ... | IBM Redbooks, demos, education, and more(Index) |