ikecert certdb Command (System Administration Guide: IP Services)

System Administration Guide: IP Services

Previous: ikecert certlocal Command
Next: ikecert certrldb Command

`ikecert certdb` Command

The certdb subcommand manages the public key database. Options to this subcommand enable you to add, view, and remove certificates and public keys. The command accepts, as input, certificates that were generated by the ikecert certlocal -ks command on a remote system. For the procedure, see How to Configure IKE With Self-Signed Public Key Certificates. This command also accepts the certificate that you receive from a PKI or CA as input. For the procedure, see How to Configure IKE With Certificates Signed by a CA.

The certificates and public keys are stored on the system in the /etc/inet/ike/publickeys directory. The -T option stores the certificates, private keys, and public keys on attached hardware.

Previous: ikecert certlocal Command
Next: ikecert certrldb Command