Installing Security certificate on WAS
Hi All,
I have security certificate and key provided by my company and need to install this certificate for WAS 8.5.5.
I have went through many different links on IBM knowledge center but none really helped. Have anyone one installed security certificate on WAS please guide me on how to install it...?
Thank you,
Kunal N.
Accepted answer
It sounds as though you did not initiate any signing request from within the WebSphere console.
If this certificate is to be used for WAS encryption you must have created a keystore and a signing request which was handed over to a signing authority. The signing authority will have given back data that must be received into that same keystore ( along possibly some additional root and/or intermediate signing certificates that will likely also be needed in that keystore ).
It is possible to configure WebSphere to use that keystore. You will need to have the keystore, know its password and have write access to the install of the WebSphere profile.
There are pages and pages in the WebSphere Knowledge Center
https://www-01.ibm.com/support/knowledgecenter/SSEQTP_8.5.5/com.ibm.websphere.base.doc/ae/csec_sslsecurecom.html?cp=SSEQTP_8.5.5%2F1-8-2-31-4-0&lang=en
If this certificate is to be used for WAS encryption you must have created a keystore and a signing request which was handed over to a signing authority. The signing authority will have given back data that must be received into that same keystore ( along possibly some additional root and/or intermediate signing certificates that will likely also be needed in that keystore ).
It is possible to configure WebSphere to use that keystore. You will need to have the keystore, know its password and have write access to the install of the WebSphere profile.
There are pages and pages in the WebSphere Knowledge Center
https://www-01.ibm.com/support/knowledgecenter/SSEQTP_8.5.5/com.ibm.websphere.base.doc/ae/csec_sslsecurecom.html?cp=SSEQTP_8.5.5%2F1-8-2-31-4-0&lang=en
Comments
So does it mean that, I need to create a request from WAS for security certificate to CA.
Is it not possible to install the certificates that are being provided to me by my organization.?
Thank you,
Kunal
No. You should be able to just import the certificates (personal and singer).
https://www-01.ibm.com/support/knowledgecenter/SSYMRC_5.0.2/com.ibm.rational.rrdi.admin.doc/topics/t_replace_was_cert.html