Certificate management

Certificate management

You can manage certificate operations that involve personal certificates, signer certificates, and personal certificate requests on the administrative console.

Types of certificates
WAS uses the certificates that reside in keystores to establish trust for a Secure Sockets Layer (SSL) connection. Click Security > SSL certificate and key management > Manage endpoint security configurations > Inbound | Outbound > SSL_configuration_name > Key stores and certificates, then select an existing or create a new keystore. After selecting a keystore, and depending on the type of certificate we need, choose one of the following types of certificates under Related Items:

Personal certificate

Signer certificate

Personal certificate request

The following table describes the certificate operations that you can perform on the console:

Types of certificates Functions Description

Personal certificates Create a self-signed certificate Creates a self-signed certificate and stores it in a keystore.
List personal certificates Lists all the personal certificates in a keystore.
Get information about a personal certificate Gets information about a personal certificate.
Delete a personal certificate Deletes a personal certificate from a keystore.
Import a certificate Imports a certificate from a keystore to a keystore.
Export a certificate Exports a certificate from a keystore to another keystore.
Extract a certificate Extracts the signer part of a personal certificate to a file.
Exchange signer certificates Exchange signer part of a personal certificate between key store.
Receive a certificate Reads a certificate that comes from a certificate authority (CA) into a keystore.
Replace a certificate Replaces all occurrences of a personal certificate alias in the WAS configuration with another certificate. Also, replaces all occurrences of the personal certificates signer with the new personal certificate signer.
Signer certificates Add a signer certificate Adds a signer certificate from a file to a keystore.
List signer certificates Lists all the signer certificates in a keystore.
Get information about a signer certificate Gets information about a signer certificate.
Delete a signer certificate Deletes a signer certificate from a keystore.
Extract a signer certificate Extracts a signer certificate from a keystore, and stores the certificate in a file.
Retrieve a signer from a port Retrieves a signer certificate from a port, and stores it in a key store.
Certificate requests Create a certificate request Creates a certificate request that can be sent to a CA.
List certificate requests Lists the certificate requests in a keystore.
Get information about a certificate request Gets information about a certificate request.
Delete a certificate request Deletes a certificate request from a keystore.
Extract a certificate request Extracts a certificate request to a file.

Personal certificates

The following table lists the operations that you can perform on personal certificates, the AdminTask object used to to perform that operation, and how to navigate to the certificate on the console:

Function AdminTask object Administrative console

Create a self-signed certificate createSelfSigneCertificate Security > Secure Communications > Key store and certificates > key store > Create a Self-Signed Certificate
List personal certificates listPersonalCertificates Security > Secure Communications > Key store and certificates > key store > personal certificates
Get information about a personal certificate getPersonalCertificate Security > Secure Communications > Key store and certificates > key store > personal certificates > alias
Delete a personal certificate deletePersonalCertificate Security > Secure Communications > Key store and certificates > key store > personal certificates > delete
Import a certificate importCertificate Security > Secure Communications > Key store and certificates > key store > personal certificates > import
Export a certificate exportCertificate Security > Secure Communications > Key store and certificates > key store > personal certificates > export
Extract a certificate extractCertificate Security > Secure Communications > Key store and certificates > key store > personal certificates > extract
Exchange signer certificates exchangeSignerCertificates Security > Secure Communications > Key store and certificates > Exchange signers

Signer certificates

The following table lists the operations that you can perform with signer certificates, the AdminTask object used to to perform the operation, and how to navigate to the certificate on the console:

Function AdminTask object Administrative console

Add a signer certificate addSignerCertificate Security > Secure communications > Key store and certificates > key store > signer certificates > Add
List signer certificates listSignerCertificates Security > Secure communications > Key store and certificates > key store > signer certificates
Get information about a signer certificate getSignerCertificate Security > Secure communications > Key store and certificates > key store > signer certificates > alias
Delete a signer certificate deleteSignerCertificate Security > Secure communications > Key store and certificates > key store > signer certificate >delete
Extract a signer certificate to a file extractSignerCertificate Security > Secure communications > Key store and certificates > key store > signer certificates > extract
Retrieve a signer certificate from a port retrieveSignerFromPort Security > Secure communications > Key store and certificates > key store > signer certificates > retrieve from port

Personal certificate requests

The following table lists the operations that you can perform on personal certificate requests, the AdminTask object used to to perform that operation, and how to navigate to the certificate request on the console:

Function AdminTask object Administrative console

Create a personal certificate request createCertificateRequest Security > Secure communications > Key store and certificates > key store > Personal certificate Requests > Add
List personal certificate requests listCertificateRequests Security > Secure communications > Key store and certificates > key store > Personal certificate requests
Get information about a personal certificate request getCertificateRequest Security > Secure communications > Key store and certificates > key store > Personal certificate requests > alias
Delete a personal certificate request deleteCertificateRequest Security > Secure communications > Key store and certificates > key store > Personal certificate requests > delete
Extract a personal certificate request to a file extractCertificateRequest Security > Secure communications > Key store and certificates > key store > Personal certificate requests > Extract

Related concepts

Certificate management using iKeyman

Related tasks

Creating self-signed certificates using scripting

Types of certificates	Functions	Description
Personal certificates	Create a self-signed certificate	Creates a self-signed certificate and stores it in a keystore.
	List personal certificates	Lists all the personal certificates in a keystore.
	Get information about a personal certificate	Gets information about a personal certificate.
	Delete a personal certificate	Deletes a personal certificate from a keystore.
	Import a certificate	Imports a certificate from a keystore to a keystore.
	Export a certificate	Exports a certificate from a keystore to another keystore.
	Extract a certificate	Extracts the signer part of a personal certificate to a file.
	Exchange signer certificates	Exchange signer part of a personal certificate between key store.
	Receive a certificate	Reads a certificate that comes from a certificate authority (CA) into a keystore.
	Replace a certificate	Replaces all occurrences of a personal certificate alias in the WAS configuration with another certificate. Also, replaces all occurrences of the personal certificates signer with the new personal certificate signer.
Signer certificates	Add a signer certificate	Adds a signer certificate from a file to a keystore.
	List signer certificates	Lists all the signer certificates in a keystore.
	Get information about a signer certificate	Gets information about a signer certificate.
	Delete a signer certificate	Deletes a signer certificate from a keystore.
	Extract a signer certificate	Extracts a signer certificate from a keystore, and stores the certificate in a file.
	Retrieve a signer from a port	Retrieves a signer certificate from a port, and stores it in a key store.
Certificate requests	Create a certificate request	Creates a certificate request that can be sent to a CA.
	List certificate requests	Lists the certificate requests in a keystore.
	Get information about a certificate request	Gets information about a certificate request.
	Delete a certificate request	Deletes a certificate request from a keystore.
	Extract a certificate request	Extracts a certificate request to a file.

Function	AdminTask object	Administrative console
Create a self-signed certificate	createSelfSigneCertificate	Security > Secure Communications > Key store and certificates > key store > Create a Self-Signed Certificate
List personal certificates	listPersonalCertificates	Security > Secure Communications > Key store and certificates > key store > personal certificates
Get information about a personal certificate	getPersonalCertificate	Security > Secure Communications > Key store and certificates > key store > personal certificates > alias
Delete a personal certificate	deletePersonalCertificate	Security > Secure Communications > Key store and certificates > key store > personal certificates > delete
Import a certificate	importCertificate	Security > Secure Communications > Key store and certificates > key store > personal certificates > import
Export a certificate	exportCertificate	Security > Secure Communications > Key store and certificates > key store > personal certificates > export
Extract a certificate	extractCertificate	Security > Secure Communications > Key store and certificates > key store > personal certificates > extract
Exchange signer certificates	exchangeSignerCertificates	Security > Secure Communications > Key store and certificates > Exchange signers

Function	AdminTask object	Administrative console
Add a signer certificate	addSignerCertificate	Security > Secure communications > Key store and certificates > key store > signer certificates > Add
List signer certificates	listSignerCertificates	Security > Secure communications > Key store and certificates > key store > signer certificates
Get information about a signer certificate	getSignerCertificate	Security > Secure communications > Key store and certificates > key store > signer certificates > alias
Delete a signer certificate	deleteSignerCertificate	Security > Secure communications > Key store and certificates > key store > signer certificate >delete
Extract a signer certificate to a file	extractSignerCertificate	Security > Secure communications > Key store and certificates > key store > signer certificates > extract
Retrieve a signer certificate from a port	retrieveSignerFromPort	Security > Secure communications > Key store and certificates > key store > signer certificates > retrieve from port

Function	AdminTask object	Administrative console
Create a personal certificate request	createCertificateRequest	Security > Secure communications > Key store and certificates > key store > Personal certificate Requests > Add
List personal certificate requests	listCertificateRequests	Security > Secure communications > Key store and certificates > key store > Personal certificate requests
Get information about a personal certificate request	getCertificateRequest	Security > Secure communications > Key store and certificates > key store > Personal certificate requests > alias
Delete a personal certificate request	deleteCertificateRequest	Security > Secure communications > Key store and certificates > key store > Personal certificate requests > delete
Extract a personal certificate request to a file	extractCertificateRequest	Security > Secure communications > Key store and certificates > key store > Personal certificate requests > Extract