Manualshelf

iTP Secure WebServer System Administrator's Guide (iTPWebSvr 6.0+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
81828384858687888990
Configuring for Secure Transport
iTP Secure WebServer System Administrator’s Guide523346-002
4-7
Using the Keyadmin Utility to Manage Keys and
Certificates
the Keyadmin Utility to Manage Keys and Certificates below for information about
obtaining and installing certificates.
You can continue using other server IDs along with your Global Server ID in order to
provide services to browsers and other clients that do not support Global Server IDs.
Using the Keyadmin Utility to Manage Keys and Certificates
The keyadmin utility is used to generate key pairs and to manage certificates in the
server key database file. This section describes how to use the keyadmin utility and
covers these topics:
Generating a New Key Pair on page 4-7
Creating a Certificate Request on page 4-9
Requesting a Certificate on page 4-10
Adding a Certificate to the Key Database File on page 4-11
Deleting a Certificate on page 4-13
Renewing a Certificate on page 4-14
Disabling or Enabling a Certificate on page 4-14
Changing the Key Database File Password on page 4-15
Creating a List of Key Database File Contents on page 4-16
Updating the Default Root Certificates on page 4-18
Exporting a Database Entry on page 4-22.
Displaying Keyadmin Utility Information on page 4-23
The keyadmin utility is located in the bin directory in the server install directory.
Generating a New Key Pair
Before you generate a key pair, you need the following items:
The certificate-request form from the chosen CA.
You can access this form from the CA’s home page on the Web. For a list of
supported CAs, see the web page at the following URL (specify that you need an
SSL server certificate):
http://www.verisign.org
The DN you have decided to use to identify your server.
The password associated with the servers key database file. If you plan to use an
existing key database file, you must know the password associated with it. If you
plan to create a new key database file, you must choose a password.