This section describes how to convert the Certificate Revocation Lists and Authority Revocation Lists.
Certificate revocation lists (CRLs) and Authority Revocation Lists (ARLs) are available from Certification Authorities in 2 formats:
WebSphere® MQ Version 5.3 for Windows® platforms allows CRLs and ARLs to be in PEM-format. In WebSphere MQ Version 6.0, the Global Security Toolkit requires CRLs and ARLs to be in DER-format and you will need to ensure that any CRLs and ARLs that you have in PEM-format are changed to be in DER-format.
Changing the PEM-format CRLs and ARLs can be performed before or after installing WebSphere MQ Version 6.0.
Changing PEM-format CRLs and ARLs into DER-format can be achieved in several ways. Two of these are:
For each LDAP server that has been configured to hold CRL and ARL information used by WebSphere MQ, you will need to edit the appropriate LDIF file and update the certificateRevocationList; binary field with the DER-format CRL and ARL data. For further information on configuring and updating LDAP servers with CRL and ARL information, see "Accessing CRLs" in the WebSphere MQ Security book.
Notices |
Downloads |
Library |
Support |
Feedback
![]() ![]() |
wmqm1170 |