Home

 

Key databases

 

+

Search Tips   |   Advanced Search

 

This article describes how to...

A key database is a file that the server uses to store one or more key pairs and certificates. You can use one key database for all your key pairs and certificates, or create multiple databases.

You can create multiple databases if we prefer to keep certificates in separate databases.

To create a new key database...

  1. Start the ikeyman user interface.

  2. Click...

    key database file | New | CMS

    ...for the Key database type. IHS does not support database types other than CMS.

  3. Enter your password in the Password Prompt dialog box, and confirm the password. Select Stash the password to a file. Click OK.

    The new key database should display in the ikeyman utility with default signer certificates. Verify there is a functional, non-expiring signer certificate for each of your personal certificates.

Open an existing key database...

  1. Start the ikeyman user interface.

  2. Click Key Database File from the main UI, then click Open.

  3. In the Open dialog box, enter your key database name, or click the key.kdb file, if we use the default. Click OK.

  4. Enter your correct password in the Password Prompt dialog box, and click OK.

  5. The key database name is displayed in the File Name text box.

 

What to do next

When the /IBM/IHS/java/jre/lib/ext/gskikm.jar file has not been removed, the version of iKeyman that is provided by the bundled JRE does not add a default list of signer certificates to newly-created key databases. Add default signer certificates in iKeyman...

  1. Select Signer Certificates from the drop-down menu in the iKeyman window.

  2. Click the "Populate" on the right-hand side of the iKeyman window.

  3. Click the grey boxes next to the certificate authority names (Entrust, RSA Data Security, Thawte, Verisign) so they display as checked.

  4. Click OK.


 

Related information

Managing keys with the ikeyman graphical interface (Distributed systems)