Support \ Installing your Certificates on an IBM HTTP Server

Contact Sales

sales@comodogroup.com

Telephone

Tel: +1 (888) 266-6361
Tel: +1 (703) 581-6361

Supported Browsers:

SSL Browser

Read more...

Webtrust Webtrust
SSL Certificate Authority EV Code Signing Certificate Authority
Certification Authorities




Using IKEYMAN for Certificate Installation

1.Positive SSL send more than one certificate. In addition to the certificate for your server Positive SSL send two Intermediate CA Certificates (the AddTrustUTNServerCA and the PositiveSSLCA certificate) and a Root CA Certificate (UTN-USERFirst-Hardware). Before installing the server certificate, install all of these certificates. Follow the instructions in 'Storing a CA certificate'(below). Note: If the authority who issues the certificate is not a trusted CA in the key database, you must first store the CA certificate and designate the CA as a trusted CA. Then you can receive your CA-signed Certificates into the database. You cannot receive a CA-signed certificate from a CA who is not a trusted CA.

For instructions see 'Storing a CA certificate'.

Storing a CA Certificate:

You will need to repeat this process for the UTN-USERFirst-Hardware , AddTrustUTNServerCA and the PositiveSSLCA (in this order)

  1. Enter IKEYMAN on a command line on UNIX, or start the Key Management utility in the IBM HTTP Server folder on Windows.
  2. Select Key Database File from the main User Interface, select Open.
  3. In the Open dialog box, select your key database name. Click OK.
  4. In the Password Prompt dialog box, enter your password and click OK.
  5. Select Signer Certificates in the Key Database content frame, click the Add button.
  6. In the Add CA Certificate from a File dialog box, select the certificate to add or use the Browse option to locate the certificate. Click OK.
  7. In the Label dialog box, enter a label name and click OK.

To receive the CA-signed certificate into a key database:

  1. Enter IKEYMAN on a command line on UNIX, or start the Key Management utility in the IBM HTTP Server folder on Windows.
  2. Select Key Database File from the main User Interface, select Open.
  3. In the Open dialog box, select your key database name. Click OK.
  4. In the Password Prompt dialog box, enter your password, click OK.
  5. Select Personal Certificates in the Key Database content frame and then click the Receive button.
  6. In the Receive Certificate from a File dialog box, select the certificate file. Click OK.

Note: IBM has prepared a special guide called "Global Certificate Usage with OS/390 Webservers."