iTP Secure WebServer System Administrator's Guide (Version 7.0)
Configuring for Secure Transport
iTP Secure WebServer System Administrator’s Guide—523346-012
4-24
Using the Keyadmin Utility to Manage Keys and
Certificates
Under normal circumstances, you do not need to invoke this option.
Exporting a Database Entry
You can request that an entry from a specified key database file be written to any file
name that you specify. Then you can use the new file as a key database file.
You can enter the arguments in any order. Enter the entire command on a single
command line. If a continuation character is necessary, you must use the backslash (\)
character as shown; the backslash is not permitted to break the DN value across lines.
To export a database entry, use this keyadmin command:
bin/keyadmin -keydb keydb -export key-file -dn 'dn'\
[-overwrite | -nooverwrite] [-verbose]
This command prompts you for the password that will be used with the new database
name.
The command’s arguments have these functions:
-keydb keydb
specifies the name of the key database file in which the key pair you created is
stored.
-export key-file
specifies that you want to generate a list of keys and certificates using the
indicated file name.
-dn 'dn'
specifies the key associated with this DN.
-overwrite
specifies that you want to overwrite the existing entry.
-nooverwrite
specifies that you do not want to overwrite the existing entry.
-verbose
specifies that complete information associated with the command string should be
displayed.
If an entry already exists in the new database, keyadmin displays a prompt asking if
the existing entry can be overwritten. However, if you specify the option -overwrite,
Note. The bin/ prefix indicates the directory that contains the keyadmin utility; the default is
the bin directory.