After you have requested and received a root digital certificate
from a CA, you can add it to your database.
Most root digital certificates are of the form *.arm,
such as the following example:
To add a CA root digital certificate to a database, use the
following procedure:
- Unless you are already using Key Manager, start the tool
by typing:
- From the main screen, select Open from the Key Database File list.
- Highlight the key database file to which you want to add
a CA root digital certificate and click Open.
- Enter the password and click OK.
When your password is accepted, you are returned to the IBM® Key Management screen. The title bar now
shows the name of the key database file you selected, indicating that
the file is now open and ready to be worked with.
- Select Signer Certificates from
the Personal/Signer Certificates list.
- Click Add.
- Select a data type from the Data type list, such
as:
Base64-encoded ASCII data
- Enter a certificate file name and location for the CA root
digital certificate, or click Browse to select
the name and location.
- Click OK.
- Enter a label for the CA root digital certificate, such
as Test CA Root Certificate, and click OK. You are returned to the Key Management screen. The Signer Certificates field now shows the label of the
CA root digital certificate you just added. You can either perform
more tasks or exit the tool.