smgenprivkr Command
Purpose
Generates server private key ring files.
Syntax
smgenprivkr { server_name| -f list_file} -o organization -c country_code -d out_dir [ -k 512] [ -e mm/dd/yyyy]
Description
The smgenprivkr command can be run on a machine that has been defined as internal certificate authority (CA).
Flags
| Item | Description |
|---|---|
| server_name | The full TCP/IP name of the server. If the name specified is S, a private key ring file S.privkr will be generated in the output directory. |
| -f list_file | The full path name of a file with the list of server machine names (one line with full TCP/IP name per server). For each server S in the list, a private key ring file S.privkr will be generated in the output directory. |
| -o organization | Organization name (required for the server certificate). |
| -c country_code | Two-letter ISO country code (required for the server certificate). |
| -d out_dir | The output directory for the servers private key ring files. |
| -k 512 | This option does not exist in the exportable version. The server's private key length will be 512. The default in the US version is 1024, in the exportable 512. |
| -e mm/dd/yyyy | Expiration date for the server certificates. The default expiration date is two years from the date of issuing the command. |
Examples
smgenprivkr S101.IBM.COM -o IBM -c US -d /usr/websm/security/tmp -e 12/31/1999
smgenprivkr -f /usr/websm/security/tmp/server.list -o IBM -c US -d /usr/websm/security/tmp Files
| Item | Description |
|---|---|
| /usr/websm/security/SMCa.log | Lists detailed information on all operations executed by the CA. |