Panel | |
---|---|
|
Overview
Anchor | ||||
---|---|---|---|---|
|
- Create RSA/ECDSA certificates, certificate requests, private keys, certificate revocation lists (CRLs), and PKCS#12-encoded transport files.
- Print certificates, certificate requests, CRLs, and PKCS#12-encoded transport files.
- Verify certificates
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
- Certificate request: Identifies the person / computer system for which the certificate is to be issued.
- CA certificate: Identifies the Certificate Authority (CA) that is issuing the certificate.
- CA private key: Signs (digitally) the certificate.
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
- Verifying that the certificate is issued by a trusted CA.
- Verifying that the certificate is not revoked by the CA.
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
- Privacy Enhanced Mail (PEM)
PEM is the format described in RFCs 1421-1424. PEM is a base64 encoding with header and trailer lines added to identify the contents. PEM is a text format suitable for email and text file transfers. - Distinguished Encoding Rules (DER)
DER is an encoding rule based on the Abstract Syntax Notation 1 (ASN.1) specification. DER is a binary file format. When transferred across a network, it must be transferred in a binary or image mode.
Anchor | ||||
---|---|---|---|---|
|
Note | ||
---|---|---|
| ||
Universal Certificate supports only the DER format for PKCS #12-encoded transport files. |
...
Info | ||
---|---|---|
| ||
PEM- and DER-formatted files can be written either to a member of a partitioned data set or a sequential data set. The record format must be variable or variable blocked. The record length must be at least 80. |
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
Anchor | ||||
---|---|---|---|---|
|
UNIX | The database file name is specified with the CERT_DB |
---|
option. If CERT_DB |
is not used, the database is created in the current working directory with name ucert.db. | |
Windows | The database file name is specified with the CERT_DB |
---|
option. If CERT_DB |
is not used, the database is created in the current working directory with name ucert.db. | |
z/OS | The database is allocated to ddname UNVDB. The database allocation attributes are DSORG=PS, RECFM={FB | F}, and LRECL=1120. The block size must be a multiple of LRECL if RECFM is FB. |
---|
...