[AIX Solaris HP-UX Linux Windows]

Managing keys from the command line (Distributed systems)

The Java™ command line interface to IKEYMAN, gskcapicmd, provides the necessary options to create and manage keys, certificates and certificate requests. The native utility /bin/gskcapicmd is always preferred over /bin/gskcmd. gskcapicmd is faster and some features are added to gskcapicmd before gskcmd

About this task

Global Security Kit (GSKit) certificate management tools are installed in the <ihsinst>/bin/ directory. These tools should only be run from the installation directory. Examples for the following commands should include the full directory path, such as <ihsinst>/bin/gskcapicmd.
  • [Windows]gskver.bat, ikeyman.bat, gskcmd.bat, gskcmd, and gskcapicmd.
  • [AIX][Linux][Solaris][HP-UX]gskver, ikeyman, and gskcmd.

To have a secure network connection, create a key for secure network communications and receive a certificate from a certificate authority (CA) that is designated as a trusted CA on your server. Use gskcapicmd, the utility command line interface, for configuration tasks that are related to public and private key creation and management.

The gskcapicmd user interface uses Java and native command line invocation, enabling IKEYMAN task scripting.

You cannot use gskcapicmd for configuration options that update the server configuration file, httpd.conf. For options that update the server configuration file, use the IBM® HTTP Server administration server.

Procedure

What to do next

For more information about the gskcapicmd command line interface, see the GSKCapicmd User's Guide on the WebSphere® Application Server Library page. For more information about the gskcmd (ikeycmd) command, see the IBM Developer Kit and Runtime Environment, Java 2 Technology Edition, Version 6.0 iKeyman 8.0 User's Guide .

Icon that indicates the type of topic Task topic



Timestamp icon Last updated: March 23, 2018 0:23
File name: cihs_ikeycmdline.html