Home
List of trusted certificate authorities on the IHS
Associate your public key with a digitally signed certificate from a CA that is designated as a trusted root CA on your server. You can buy a signed certificate by submitting a certificate request to a certificate authority provider. The default certificate request file name is certreq.arm. The certificate request file is a PKCS 10 file, in Base64-encoded format.
You can create a new .kdb keystore file and view the list of designated trusted certificate authorities (CAs). If we are using a personal certificate and the signer is not in the list, obtain a signer certificate from the associated trusted certificate authority. IBM HTTP Server supports the following certificate authority (CA) software:
- Any X.509-compliant certificate authority
- Entrust
- Netscape Certificate Server
- Tivoli PKI
- XCert
Related concepts
SSL certificate revocation list
Related tasks