Creating a self-signed personal certificate
Use the following procedure to create a self-signed personal certificate:
- Generate a certificate and a public and private key pair using the following
command:
RACDCERT ID(userid2) GENCERT
SUBJECTSDN(CN('common-name')
T('title')
OU('organizational-unit')
O('organization')
L('locality')
SP('state-or-province')
C('country'))
WITHLABEL('label-name')
- Connect the certificate to your key ring using the following command:
RACDCERT ID(userid1)
CONNECT(ID(userid2) LABEL('label-name') RING(ring-name) USAGE(PERSONAL))
where:
- userid1 is the user ID of the channel
initiator address space or owner of the shared key ring.
- userid2 is the user ID associated with
the certificate.
- ring-name is the name you gave the key ring in Setting up a key repository.
- label-name must be in the correct WebSphere MQ format
for a queue manager: ibmWebSphereMQ followed by the name of your
queue manager, for example, ibmWebSphereMQCSQ1.
Note that userid1 and userid2 can be the same
ID.