Save a Client Certificate
Save a certificate so that it can be used by the OKM command line utility to authenticate itself as a valid OKM user.
Save the client certificate in either PEM format or PKCS#12 format. Save a certificate in PEM format to use if for Command Line Interface (CLI) operations. The PEM format contains the certificate and the unencrypted private key. The PKCS#12 format is encrypted. You can convert a PKCS#12 format to PEM format if needed (see Convert PKCS#12 Format to PEM Format).
Note:
Store these certificate files in a secure location with sufficient permissions to restrict access by other users.