Managing keys from the command line (Distributed systems)
gskcapicmd
is a native command line interface for certificate management.
gskcapicmd
is an alternative to IKEYMAN and gskcmd
or
ikeycmd
.
About this task
Global Security Kit (GSKit) certificate management tools are installed in the
<ihsinst>/bin/ directory. These tools should only be
run from the installation directory. Examples for the following commands should include the full
directory path, such as <ihsinst>/bin/gskcapicmd.
- gskver.bat, ikeyman.bat, gskcmd.bat, gskcmd, and gskcapicmd.
- gskver, ikeyman, and gskcmd.
To have a secure network connection, create a key for secure network communications and receive a certificate from a certificate authority (CA) that is designated as a trusted CA on your server. Use gskcapicmd, the utility command line interface, for configuration tasks that are related to public and private key creation and management.
The gskcapicmd user interface uses Java™ and native command line invocation, enabling IKEYMAN task scripting.
Procedure
Use gskcapicmd in the command line interface to create and manage key
databases and certificates. gskcapicmd includes functions such as, managing key
stores and the certificates within them, creating a keystore, changing a password,
importing/exporting or any number of other maintenance activities that you might require.
See http://public.dhe.ibm.com/software/webserver/appserv/library/v80/GSK_CapiCmd_UserGuide.pdf, which has comprehensive technical details for using
gskcapicmd in these ways.
What to do next
gskcmd
or ikeycmd
command, see the IBM Developer Kit and Runtime Environment, Java 2 Technology Edition,
Version 6.0 iKeyman 8.0 User's Guide.