Creating a self-signed certificate for the HTTP server

  1. Start the IBM® HTTP Server Key Management Utility tool (if it is not already running).
  2. Click Key Database File > Open > Select Key database type CMS and click browse to navigate to your key store file (key.kdb).
  3. Enter the keystore password and click OK
  4. In Key database content, click the drop-down menu and click Personal Certificates (if you are creating a self-signed certificate) or Personal Certificate Requests (if you are creating a certificate request to be sent to an Independent certificate authority (CA)).
  5. If you are creating a self signed certificate, click New Self-Signed.
  6. In the Create a New Self-Signed Certificate window, enter a key label for this certificate by filling in the following fields, and then click OK. Do not use spaces in the key label.
    • For the Version field, select X509 V3.
    • For the Key Size field, select 1024.
    • For the Common Name field, enter the fully qualified address of the HTTP server, for example Servername.ibm.com.
    • For the Organization field, enter the name of your company or area. The Common Name and Organization are required fields of the Distinguished Name. The Organization Unit, Locality, State/Province, and other fields are optional.
    • Select the appropriate value for the Country field.
    • For the Validity Period field, enter 365.

Feedback