Issue in configuring a certificate in IBM Web Application Server
843833Jun 6 2008 — edited Jul 6 2008Core objective is to configure IBM WAS default server with a test certificare provided from security team on SSL port and enabling HTTPS.
Steps followed are :
Have created a keystore using the certificate provided using ikeyman tool (also tried with keytool in JDK) provided by IBM.
ikeyman/keytool is only able to 'Import' the provided certificate as 'Signer Certificate'.
When tried to 'Recieve' the provided certificate as 'Personal Certificate', ikeyman says an error message 'No request key was found for the certificate'._
When tried to 'Recieve' the same certificate as Personal for the keystore uploaded in WAS says 'CWPKI0662E: Certificate with a public key matching the public key in the certificate from the Certificate Authority is not found in key store "SiperianCert".'_
IBM WAS only accepts certificates in a keystore that are Personal to be exposed/configurable for SSL port. (Shown in IBM Admin console)
Main clarifications that would be needed on this scenario is
1) Why are certificates that are prepared from a securtity team (authorized) are not supported to be converted to Personal Certificate?
2) Can Signer Certificates be used from IBM WAS to be configured on SSL port for authentication?
3) What does the error messages mean to the developer?
Hence not able to configure the provided certificate in WAS for SSL authentication.
Test certificate can be mailed on request
Any views on this scenario could be of a great help
Thank you