friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
0332907f0f
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzahu_5.4.0.1/rzahurzahu461installcacert.htm

100 lines
6.9 KiB
HTML
Raw Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Obtain a copy of the private CA certificate" />
<meta name="abstract" content="Review this information to learn how to obtain a copy of the private CA certificate and install it on your PC so that you can authenticate any server certificates that the CA issues." />
<meta name="description" content="Review this information to learn how to obtain a copy of the private CA certificate and install it on your PC so that you can authenticate any server certificates that the CA issues." />
<meta name="DC.Relation" scheme="URI" content="rzahurzahu4anactingownca.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahurzahu4anactingownca.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahurzahu404selectingusercatasks.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahurequestuser.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzahu461-install_ca_cert" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Obtain a copy of the private CA certificate</title>
</head>
<body id="rzahu461-install_ca_cert"><a name="rzahu461-install_ca_cert"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Obtain a copy of the private CA certificate</h1>
<div><p>Review this information to learn how to obtain a copy
of the private CA certificate and install it on your PC so that you can authenticate
any server certificates that the CA issues.</p>
<div class="section"> <p>When you access a server that uses a Secure Sockets Layer (SSL)
connection, the server presents a certificate to your client software as proof
of its identity. Your client software must then validate the server's certificate
before the server can establish the session. To validate the server certificate,
your client software must have access to a locally stored copy of the certificate
for the Certificate Authority (CA) that issued the server certificate. If
the server presents a certificate from a public Internet CA, your browser
or other client software might already have a copy of the CA certificate.
If, however, the server presents a certificate from a private Local CA, you
must use Digital Certificate Manager (DCM) to obtain a copy of the Local CA
certificate. </p>
<p>You can use DCM to download the Local CA certificate directly
into your browser, or you can copy the Local CA certificate into a file so
that other client software can access and use it. If you use both your browser
and other applications for secure communications, you may need to use both
methods to install the Local CA certificate. If using both methods, install
the certificate in your browser before you copy and paste it into a file.</p>
<p>If
the server application requires that you authenticate yourself by presenting
a certificate from the Local CA, you must download the Local CA certificate
into your browser before requesting a user certificate from the Local CA. </p>
<p>To
use DCM to obtain a copy of a Local CA certificate, complete these steps: </p>
</div>
<ol><li><span><a href="rzahurzahu66adcmstart.htm#rzahu66a-dcm_start">Start
DCM</a>.</span></li>
<li><span>In the navigation frame, select <span class="uicontrol">Install Local CA Certificate
on Your PC</span> to display a page that allows you to download the Local
CA certificate into your browser or to store it in a file on your system.</span></li>
<li><span>Select a method for obtaining the Local CA certificate.</span><ol type="a"><li><span>Select <span class="uicontrol">Install certificate</span> to download
the Local CA certificate as a trusted root in your browser. This ensures that
your browser can establish secure communications sessions with servers that
use a certificate from this CA. Your browser will display a series of windows
to help you complete the installation.</span></li>
<li><span>Select <span class="uicontrol">Copy and paste certificate</span> to
display a page that contains a specially coded copy of the Local CA certificate.
Copy the text object shown on the page into your clipboard. You must later
paste this information into a file. This file is used by a PC utility program
(such as MKKF or IKEYMAN) to store certificates for use by client programs
on the PC. Before your client applications can recognize and use the Local
CA certificate for authentication, you must configure the applications to
recognize the certificate as a trusted root. Follow the instructions that
these applications provide for using the file. </span></li>
</ol>
</li>
<li><span>Click <span class="uicontrol">OK</span> to return to the Digital Certificate
Manager home page.</span></li>
</ol>
<div class="section"></div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzahurzahu4anactingownca.htm" title="This information explains how to create and operate a Local Certificate Authority (CA) to issue private certificates for your applications.">Create and operate a Local CA</a></div>
</div>
<div class="relconcepts"><strong>Related concepts</strong><br />
<div><a href="rzahurzahu404selectingusercatasks.htm" title="You can use Digital Certificate Manager (DCM) to obtain certificates with SSL or associate existing certificates with their iSeries user profiles.">Manage user certificates</a></div>
</div>
<div class="reltasks"><strong>Related tasks</strong><br />
<div><a href="rzahurzahu4anactingownca.htm" title="This information explains how to create and operate a Local Certificate Authority (CA) to issue private certificates for your applications.">Create and operate a Local CA</a></div>
<div><a href="rzahurequestuser.htm" title="Review this information to learn how your users can use the Local CA to issue a certificate for client authentication.">Create a user certificate</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink