Certificate management using iKeyman



Overview

Certificates can be managed from the admin console or using iKeyman. For versions of WAS prior to V6.1, use iKeyman.

iKeyman requires access to the keystore file (*.jks), which contains personal and signer certificates.

A keystore file can be read into the WAS configuration using createKeyStore.

The majority of certificate management functions are the same between WAS and iKeyman, especially for personal certificates and signer certificates. However, certificate requests are special.


iKeyman certificate operations

Types of certificates Functions Description
Personal certificates Create a self-signed certificate Create a self-signed certificate and store it in a keystore.
  List personal certificates List all the personal certificates in a keystore.
  Get information about a personal certificate Gets information about a personal certificate.
  Delete a personal certificate Deletes a personal certificate from a keystore.
  Import a certificate Imports a certificate from a keystore to a keystore.
  Export a certificate Exports a certificate from a keystore to another keystore.
  Extract a certificate Extracts the signer part of a personal certificate to a file.
  Receive a certificate Reads a certificate that comes from a certificate authority (CA) into a keystore.
Signer certificates Add a signer certificate Adds a signer certificate from a file to a keystore.
  List signer certificates Lists all the signer certificates in a keystore.
  Get information about a signer certificate Gets information about a signer certificate.
  signer certificate Delete a signer certificate from a keystore.
  Extract a signer certificate Extracts a signer certificate from a keystore, and stores the certificate in a file.
Certificate requests Create a certificate request Creates a certificate request that can be sent to a CA.
  List certificate requests Lists the certificate requests in a keystore.
  Get information about a certificate request Gets information about a certificate request.
  Delete a certificate request Deletes a certificate request from a keystore.
  Extract a certificate request Extracts a certificate request to a file.





Related concepts

Certificate management in SSL
Create a keystore configuration for a preexisting keystore file