Installed CA certificates are set to trusted by default. You can change the trust setting if needed.
To change the trust setting, do the following steps:
- Unless you are already using Key Manager, start the tool
by typing:
- From the main screen, select Open from the Key Database File list.
- Highlight the key database file in which you want to change
the default digital certificate and click Open.
- Enter the password and click OK.
After your password is accepted, you are returned to the IBM® Key Management screen.
The title bar shows the name of the key database file you selected,
indicating that the file is now open.
- Select Signer Certificates from
the Personal/Signer Certificates list.
- Highlight the certificate you want to change and click View/Edit, or double-click on the entry. The Key Information screen is displayed for the certificate entry.
- To make this certificate a trusted root certificate, select
the check box next to Set the certificate as a trusted
root and click OK. If the certificate
is not trusted, clear the check box instead and click OK.
- Click OK from the Signer Certificates screen. You are returned to the IBM Key Management screen. You can either perform other
tasks or exit the tool.