To Obtain a Signed Certificate (Sun Java System Message Queue 3.7 UR1 Administration Guide)

Sun Java System Message Queue 3.7 UR1 Administration Guide

To Obtain a Signed Certificate

Use the J2SE keytool command to generate a certificate signing request (CSR) for the self-signed certificate you generated in the preceding section.

Information about the keytool command can be found at

http://java.sun.com/j2se/1.5.0/docs/tooldocs/solaris/keytool.html

Here is an example:
keytool -certreq -keyalg RSA -alias imq -file certreq.csr -keystore /etc/imq/keystore -storepass myStorePassword
This generates a CSR encapsulating the certificate in the specified file (certreq.csr in the example).

Use the CSRto generate or request a signed certificate.

You can do this by either of the following methods:
- Have the certificate signed by a well known certification authority (CA), such as Thawte or Verisign. See your CA’s documentation for more information on how to do this.
- Sign the certificate yourself, using an SSL signing software package.
  
  The resulting signed certificate is a sequence of ASCII characters. If you receive the signed certificate from a CA, it may arrive as an e-mail attachment or in the text of a message.

Save the signed certificate in a file.

The instructions below use the example name broker.cer to represent the broker certificate.

© 2010, Oracle Corporation and/or its affiliates