Uploading a keystore file

You can upload a keystore file from your local file system or from a mapped drive to the IBM Security Guardium Key Lifecycle Manager server by using the graphical user interface or REST interface. You need not log in to the server computer for the same.

Before you begin

  • Ensure that your user ID has the required role (klmFileTransfer or klmSecurityOfficer) to transfer files from and to the server.
  • Ensure that the keystore file to be uploaded is available on your local file system or mapped drive.
  • Ensure that the size of the file does not exceed the maximum size as defined in the key.cert.fileuploadsize property.

    You can modify the maximum size value. For more information, see Changes to configuration properties or database values.

Procedure

  • Using graphical user interface
    1. Log in to the graphical user interface by using your credentials.
    2. Click the Administration tab and select Export and Import.
    3. Click the Import Keys tab.
    4. Select the type of key that you want to upload.
    5. Click Browse.
      The Browse File dialog box opens that displays the keystore repository location, which is the destination directory to which the file is uploaded. For example, SKLM_DATA directory.
    6. Optional: To change the destination directory, select a subdirectory.
      You can upload the file only to the SKLM_DATA directory or its subdirectory.
    7. Click Upload.
    8. Browse to the location where the keystore file is stored, select it, and click Open.
      The file is uploaded to the SKLM_DATA folder in the server.
    9. To close the dialog box, click Cancel or press the Escape key.
  • Using REST interface
    1. Open a REST client. For more information, see Using Swagger UI.
    2. Authenticate and authorize to access IBM Security Guardium Key Lifecycle Manager REST services. For more information about the authentication process, see Authentication process for REST services.
    3. Run Upload File to Server REST Service.

What to do next

Importing a key by using the graphical user interface