2.11 Obtaining and Using the Certificate Database Tool

For this deployment example, you must have access to the Certificate Database Tool certutil utility. You need the certutil utility for setting up the SSL Client handshake on the J2EE Policy Agents. Use certutil to create and modify the Application Server trust database files. You can also use certutil to list, generate, modify, or delete certificates within the cert8.db file and to create or change the password, generate new public and private key pairs, display the contents of the key database, or delete key pairs within the key3.db file.

For information about obtaining and using the certutil utility, see the following URL on the Mozilla website: http://www.mozilla.org/projects/security/pki/nss/tools/certutil.html.

Previous: 2.10 Obtaining Certificates for SSL and for XML Signing and Encryption
Next: 2.12 Obtaining Instructions for Deploying the Identity Provider Site