Listing certificate authorities

We can display a list of trusted certificate authorities within a key database.


About this task

A trusted certificate authority issues and manages public keys for data encryption. A key database is used to share public keys that are used for secure connections.

To display a list of trusted certificate authorities (CAs) in a key database, complete the following steps:


Procedure

  1. Start the IKEYMAN user interface. Refer to Starting the Key Management utility for platform-specific instructions.

  2. Click Key Database File from the main UI, then click Open.

  3. Enter your key database name in the Open dialog box, or click key.kdb if you are using the default.

  4. Enter your correct password in the Password prompt dialog box, and click OK.

  5. Click Signer Certificates in the Key database content frame.

  6. Click Signer Certificates, Personal Certificates, or Certificate Requests, to view the list of CAs in the Key Information window.


What to do next

When the <ihsinst>/java/jre/lib/ext/gskikm.jar file has not been removed, the version of iKeyman that is provided by the bundled Java™ Runtime Environment (JRE) does not add a default list of signer certificates to newly-created key databases. Add default signer certificates in iKeyman, as follows:

  1. Select Signer Certificates from the drop-down menu in the iKeyman window.

  2. Click Populate.

  3. Click the grey boxes next to the certificate authority names (Entrust, RSA Data Security, Thawte, Verisign) so they display as checked.

  4. Click OK.


Related