A key database is a file that the server uses to
store one or more key pairs and certificates. You can use one key
database for all your key pairs and certificates, or create multiple
databases.
About this task
You can create multiple databases if you prefer to keep
certificates in separate databases.
Procedure
- Create a new key database using the gskcmd command-line
interface by entering the following command (as one line):
<ihsinst>/bin/gskcmd -keydb -create -db <filename> -pw <password> -type
<cms | jks | jceks | pks12> -expire <days> -stash
- Create a new key database using the GSKCapiCmd tool. GSKCapiCmd is a tool that manages keys, certificates, and certificate
requests within a CMS key database. The tool has all of the functionality
that the existing GSKit Java command
line tool has, except GSKCapiCmd supports CMS and PKCS11 key databases.
If you plan to manage key databases other than CMS or PKCS11, use
the existing Java tool. You can use GSKCapiCmd
to manage all aspects of a CMS key database. GSKCapiCmd does not require Java to be installed on the system.
<ihsinst>/bin/gskcapicmd -keydb -create -db <name> [-pw <passwd>] [-type <cms>] [-expire <days>] [-stash]
[-fips] [-strong]