Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Showing certificate/key information z/OS Cryptographic Services System SSL Programming SC14-7495-00 |
|
It is sometimes useful to display the information contained in the certificates that are stored in the key database. The information displayed includes, among others, the label, issuer/subject name, the version number of the certificate, the key size for the public/private key pair, and the expiration date. To list information about certificates that contain private keys, from the Key Management Menu or Token Management Menu (see Figure 4) select 1, (Manage keys and certificates). This displays the Key and Certificate List. Select the number corresponding to the label for which you would like to display certificate/key information. The Key and Certificate Menu for the label you chose displays next On the Key and Certificate Menu or the Token Key and Certificate Menu, you could choose 1 to display certificate information. This accesses the Certificate Information menu (see Figure 1): Figure 1. Certificate Information
Note: For a z/OS® PKCS #11 certificate,
the Record ID and Issuer Record ID is N/A.
From the Certificate Information screen, you can also enter 1 to display certificate extensions: Figure 2. Certificate extensions list
Enter 3 on the Certificate Extensions List to show key usage information: Figure 3. Key usage information
To display key information, from the Key and Certificate Menu or Token Key and Certificate Menu, choose 2, Show Key Information. This accesses the Key Information menu (see Figure 4) or the Token key information menu (see Figure 5 or Figure 6 : Figure 4. Key information
menu
Figure 5. Token key information menu
of a certificate with a secure private key
Figure 6. Token key information menu
of a certificate with a clear private key
Note: For a z/OS PKCS #11 certificate,
the Record ID and Issuer Record ID is N/A.
|
Copyright IBM Corporation 1990, 2014
|