The createCertRequest command creates a PKCS10 certificate request and stores it in a client keystore so that it can be used to send to a certificate authority (CA) server using the requestCertificate command line utility.
Issue the command from the profile_root/bin directory.
The command syntax is as follows:
createCertRequest.sh -keyStoreAlias<keystoreAlias> -subjectDN<subjectDN> -alias<certificateAlias> [options]
createCertRequest.bat -keyStoreAlias<keystoreAlias> -subjectDN<subjectDN> -alias<certificateAlias> [options]
createCertRequest.sh -keyStoreAlias<keystoreAlias> -subjectDN<subjectDN> -alias<certificateAlias> [options]
The following options are available for the createCertRequest command:
The following example creates a PKCS10 certificate request for a client that can be used to send to a CA :
createCertRequest.sh -keyStoreAlias ClientDefaultKeyStore -subjectDN CN=mycn,o=ibm,c=us -alias cert1 CWPKI0403I: Trace is being logged to the following location: C:\opt\WebSphere\AppClient\logs\caClient.log CWPKI0422I: Generating a PKCS10 certificate request CWPKI0421I: A PKCS10 certificate was successfully created. The request is stored in file: C:\opt\WebSphere\AppClient\etc\certReq26924.req
C:\opt\WebSphere\AppClient\bin>createCertRequest.bat -keyStoreAlias ClientDefaultKeyStore -subjectDN CN=mycn,o=ibm,c=us -alias cert1 CWPKI0403I: Trace is being logged to the following location: C:\opt\WebSphere\AppClient\logs\caClient.log CWPKI0422I: Generating a PKCS10 certificate request CWPKI0421I: A PKCS10 certificate was successfully created. The request is stored in file: C:\opt\WebSphere\AppClient\etc\certReq26924.req
createCertRequest.sh -keyStoreAlias ClientDefaultKeyStore -subjectDN CN=mycn,o=ibm,c=us -alias cert1 CWPKI0403I: Trace is being logged to the following location: C:\opt\WebSphere\AppClient\logs\caClient.log CWPKI0422I: Generating a PKCS10 certificate request CWPKI0421I: A PKCS10 certificate was successfully created. The request is stored in file: C:\opt\WebSphere\AppClient\etc\certReq26924.req