Creating a self-signed certificate for the HTTP server
- Start the IBM® HTTP Server Key Management Utility tool (if it is
not already running).
- Click Key Database File > Open > Select Key database
type CMS and click browse to navigate to your key store file (key.kdb).
- Enter the keystore password and click OK
- In Key database content, click the drop-down
menu and click Personal Certificates (if you are creating
a self-signed certificate) or Personal Certificate Requests (if
you are creating a certificate request to be sent to an Independent certificate
authority (CA)).
- If you are creating a self signed certificate, click New
Self-Signed.
- In the Create a New Self-Signed Certificate window,
enter a key label for this certificate by filling in the following fields,
and then click OK. Do not use spaces in the key label.
- For the Version field, select X509 V3.
- For the Key Size field, select 1024.
- For the Common Name field, enter the fully qualified address of the HTTP
server, for example Servername.ibm.com.
- For the Organization field, enter the name of your company or area. The
Common Name and Organization are required fields of the Distinguished Name.
The Organization Unit, Locality, State/Province, and other fields are optional.
- Select the appropriate value for the Country field.
- For the Validity Period field, enter 365.