A key database is a file that the server uses to store one or more key pairs and
certificates. You can use one key database for all your key pairs and certificates, or create
multiple databases.
About this task
You can create multiple databases if you prefer to keep certificates in separate databases.
Procedure
-
Create a new key database using the gskcmd command-line interface by entering the following
command (as one line):
install_root/bin/gskcmd -keydb -create -db filename [-pw password | -stashed] -stash
-
Create a new key database using the GSKCapiCmd tool.
GSKCapiCmd is a tool that manages keys, certificates, and certificate requests within a CMS
key database. The tool has all of the functionality that the existing IBM Global Security Kit (GSKit) Java™ command line tool has,
except GSKCapiCmd supports CMS and PKCS11 key databases. If you plan to manage key databases other
than CMS or PKCS11, use the existing Java tool. You can use GSKCapiCmd to manage all aspects of a CMS
key database. GSKCapiCmd does not require Java to be installed on the
system.
install_root/bin/gskcapicmd -keydb -create -db name
[-pw password | -stashed] [-stash] [-fips] [-strong]