This section describes how to view trusted certificate
authorities and display default keys within a key database.
About this task
A trusted certificate authority (CA) issues and manages public
keys for data encryption. A key database is used to share public keys
that are used for secure connections. The tasks that follow show how
to view the certificate authorities that are in your database, along
with their expiration dates.
Procedure
-
Display a list of trusted CAs in a key database by entering
the following command as one line:
install_root/bin/gskcmd -cert -list CA -db filename [-pw password | -stashed]
-
Display a list of certificates in a key database and their
expiration dates by enter the following command:
install_root/bin/gskcmd -cert -list -db filename [-pw password | -stashed]
where:
- -cert indicates the operation applies to a certificate.
- -list all | personal | CA | site specifies
a list action. The default is to list all certificates.
- -db <filename> is the name of the key database.
It is used when you want to list a certificate for a specific key
database.
- -pw password specifies the password to
access the key database.
- -stashed indicates that the password for the key database should be recovered from the stash file.