Use the GSKit iKeyman utility to create a key database
file for storing the certificate for the trusted certificate authority
of your LDAP server certificates.
About this task
You must set the JAVA_HOME environment
variable to use the iKeyman utility. See Setting the JAVA_HOME environment variable.
The
following variable is used in path specifications in this topic:
HCL_COMMON- Directory where the HCL common files are
installed
Procedure
- On your administrative computer, use Windows™ Explorer to navigate to the \IBM\HTTPServer\bin directory
and double-click ikeyman.bat.
The
iKeyman utility opens.
- Click .
The New
window opens.
- In the Key database type list, select CMS.
- In the File Name field, enter
a name for the key database file.
At runtime,
HCL Compass uses
one of several methods to find the key database file. See
Distributing the key database file for
details. If all other methods fail,
Compass looks
for a key database file named
ldapkey.kdb in the
default location:
- On Windows:
- install-drive:\HCL_COMMON
- On the UNIX™ system and Linux™:
- /RATIONAL_COMMON
- In the Location field, enter
the path name for the directory that contains the key database file.
Then click OK.
The Password
Prompt window opens.
- In the Password and Confirm
Password fields, enter a password for accessing the key
database file.
- Select the Stash the password to a file check
box.
Selecting this option stores an encrypted version
of the password in a file with a .sth extension.
The Ikeyman utility stores the file in the same location as the key
database file and uses the same root name as the key database file.
For example, if you named the key database file ldapkey.kdb,
then the password stash file is named ldapkey.sth.
- Click OK.