To select the certificate name for the listen socket, perform the following steps:
If Security is not enabled on the listen socket, certificate information is not listed. To select a certificate name for a listen socket, ensure that security is enabled. For more information, see Enabling Security for Listen Sockets.
Access either the Administration Server or the Server Manager and choose the Preferences tab.
For the Server Manager you must first select the server instance from the drop-down list.
Select the Preferences tab.
Click the Edit Listen Sockets link.
The Edit Listen Sockets page appears.
Click the Listen Socket Id link corresponding to the listen socket that you want to associate with a certificate.
The Edit Listen Socket page appears.
Select a server certificate from the drop-down Server Certificate Name list for the listen socket.
The list contains all internal and external certificates installed.
If no server certificates are installed, a warning to this effect is displayed in place of the Server Certificate Name drop-down list.
From the Server Manager, click Apply, and then Restart for changes to take effect.
To find what value to use for $TOKENNAME, go to the server’s Security tab and select the Manage Certificates link. When you log in to the external module where Server-Cert is stored, its certificates are displayed in the list in the $TOKENNAME:$NICKNAME form.
If you have not created a trust database, it is created for you when you request or install a certificate for an external PKCS#11 module. The default database that is created has no password and cannot be accessed. Although your external module works, you cannot request and install server certificates. If a default database has been created without a password, use the Security Tab Create Database page to set a password.