To Obtain a Signed Certificate (Sun Java System Message Queue 4.3 Administration Guide)

Sun Java System Message Queue 4.3 Administration Guide

To Obtain a Signed Certificate

Use the J2SE keytool command to generate a certificate signing request (CSR) for the self-signed certificate you generated in the preceding section.

Information about the keytool command can be found at
Here is an example:
```
   keytool  -certreq  -keyalg RSA  -alias imq  -file certreq.csr
            -keystore /etc/imq/keystore  -storepass myStorePassword
```
This generates a CSR encapsulating the certificate in the specified file (certreq.csr in the example).

Use the CSR to generate or request a signed certificate.

You can do this by either of the following methods:
- Have the certificate signed by a well known certification authority (CA), such as Thawte or Verisign. See your CA’s documentation for more information on how to do this.
- Sign the certificate yourself, using an SSL signing software package.
  
  The resulting signed certificate is a sequence of ASCII characters. If you receive the signed certificate from a CA, it may arrive as an e-mail attachment or in the text of a message.

Save the signed certificate in a file.

The instructions below use the example name broker.cer to represent the broker certificate.

© 2010, Oracle Corporation and/or its affiliates