+

Search Tips   |   Advanced Search

(iseries)

Recreating the .kdb keystore internal password record

The IBM i keystore type IBMi5OSKeyStore does not recognize or generate .sth password stash files. Instead it keeps an internal record of the password for the .kdb keystore file where it is created. If the .kdb file is moved, the password is no longer associated with the keystore. In that case, use the Digital Certificate Manager (DCM) to recreate the internal record of the password for the .kdb keystore file.

Refer to the topic Keystore configurations for SSL before attempting this task.

To recreate the internal record of the password for the .kdb keystore file, start the DCM. For more information, see the Digital Certificate Manager information.

  1. Click Select a Certificate Store.

  2. Select Other System Certificate Store.

  3. Enter the certificate store path and filename.

  4. Enter the certificate store password.

  5. Click Continue.

  6. Select Manage Certificate Store.

  7. Click Change password.

  8. Enter the new password and confirm it. Note that DCM requires a different password than the one specified in step 4.

  9. Select Automatic login.

  10. Click Continue.

  11. Click OK when a message displays that confirms that the password is changed.

  12. Repeat steps 1 through 5 to create the internal record of the new password for the .kdb keystore file.

  13. Repeat steps 1 through 12 to change the password back to the original password and to create the internal record of the original password for the .kdb keystore file.


Results

You have recreated the internal record of the password for the .kdb keystore file.


Related concepts

  • Keystore configurations for SSL


    Related information:

  • Digital Certificate Manager