Create the certificate signing request (CSR) files
Before you begin
On UNIX or Linux operating systems, ensure that you set a JAVA_HOME environment variable before you use the ThirdPartyCertificateTool.
On Microsoft
Windows installations, you can run the
tool with the -java:local
command to use the JRE that is provided with the
installation, as shown in the following example: ThirdPartyCertificateTool.bat -java:local
-c -d ...
About this task
If you changed the Key store password in IBM® Cognos Configuration, under , use the new password as the keystore_password when running the ThirdPartyCertificateTool commands below. The default password is NoPassWordSet.
Procedure
Results
The command generates the following CSR files:
- The CAMKeystore file in the install_location\configuration\certs directory.
- The encryptRequest.csr file in the install_location\bin directory.
What to do next
Continue with the following steps:
- Share the crypto key file encryptRequest.csr, or its contents, with the
external CA.
Using this key, the CA produces a crypto key certificate, a root certificate, and an intermediate certificate for the request, and shares them with your organization.
For details about the certificate exchange process between your organization and the external CA, see the third-party CA documentation.
- Copy the certificates from the external CA to the Cognos Analytics installation directory, such as install_location\configuration\bin.
- Import the certificates into your Cognos Analytics keystore. For more information, see Import the certificate authority (CA) certificates.