iTP Secure WebServer System Administrator's Guide (iTPWebSvr 6.0+)
Configuring for Secure Transport
iTP Secure WebServer System Administrator’s Guide—523346-002
4-17
Using the Keyadmin Utility to Manage Keys and
Certificates
-root
specifies that only entries marked as root should be displayed.
-nonroot
specifies that only the entries not marked as root be displayed.
-disabled
specifies that only disabled entries be displayed.
-enabled
specifies that only enabled entries be displayed.
-verbose
specifies that complete information associated with the command string should be
displayed.
For example, the following command:
bin/keyadmin -keydb conf/keys -list
produces the following output:
--------------------------------------
Distinguished Name:
OU: Secure Server Certification Authority
O: RSA Data Security, Inc.
C: US
State: Root Enabled
Private Key: Not present
Public Key: Present
Certificate: Present
------------------------------------
Distinguished Name:
CN: Secure Transport Bootstrap Certificate
OU: Testing Only - Do Not Trust for Secure Transactions
OU: No Assurance - Self-Signed
OU: Generated Wed Mar 5 17:36:57 EST 1997
O: fenway.company.com
State: Enabled
Private Key: Present
Public Key: Present
Certificate: Present
-------------------------------------
If you specify keyadmin -list for a nonexistent key database file, the command will
list only the built-in roots that ship with the utility.