Ask a Question

How do I install an SSL certificate for IBM AS 400 / iSeries server?

Problem

Install an SSL certificate for IBM AS 400 / iSeries server

Solution

To install an SSL certificate for IBM AS 400 / iSeries server, perform the following steps:


Step 1: Install Intermediate CA Certificates

Download Primary and Secondary Intermediate CA certificates: AR1384

Note: The Intermediate CA's must be saved and installed individually

  1. Start Digital Certificate Manager (DCM).
  2. From navigation panel, click Select a Certificate Store > select *SYSTEM



  3. Enter in password for Certificate Store > click Continue
  4. From navigation panel, select Manage Certificates
  5. From the list, select Import Certificate > Certificate Authority (CA) > click Continue




  6. On the next screen, specify the path and file name of intermediate ca certificate. This is the location and name of the intermediate ca file on the IFS of the iSeries.

    Example: The file is stored in the /home directory and the intermediate ca file was called 'cert.txt' you would put in a path and file name of /home/cert.txt.


     
  7. Click Continue
  8. Create a CA certificate label. This can be any name desired as long as it is unique (should not match any labels for any other certificates).

    Example: CA certificate label: Certificate Authority Name


     
  9. Click Continue
  10. A message stating the intermediate ca certificate has been imported. Click OK

    Note: Repeat the steps above to install the Secondary Intermediate CA.


Step 2:  Install SSL Certificate for IBM AS 400 / iSeries server

Download the Thawte certificate: SO13187
  1. Start Digital Certificate Manager (DCM).
  2. From navigation panel, click Select a Certificate Store > select *SYSTEM
  3. Enter in password for Certificate Store > click Continue
  4. From navigation panel, select Manage Certificates
  5. From the list, select Import Certificate > select Server or Client
  6. Select the certificate file and complete wizard
For further information, refer to IBM knowledge base article:

http://publib.boulder.ibm.com/iseries/v5r2/ic2924/index.htm