Ask a Question

Managed PKI for SSL - Installation Instructions for IBM AS 400 / iSeries server

Solution

INFO


This document provides installation instructions for IBM AS400/ iSeries. If you are unable to use these instructions for your server, Symantec recommends that you contact IBM.

Step 1: Download the Symantec Intermediate CA Certificate

  1. Download the Intermediate CA certificate from this link.
  2. Select Managed PKI for SSL tab
  3. Select the appropriate Intermediate CA certificate for your SSL Certificate type.
    NOTE: To check which certificate type you have purchased, follow the steps from this link.
  4. Copy the Intermediate CA certificate and paste it on a Notepad.
  5. Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white spaces, extra line breaks or additional characters have been inadvertently added.
  6. Save the file as intermediate.txt
     

Step 2: Install the Symantec Intermediate CA Certificate

  1. Start Digital Certificate Manager (DCM).
  2. From navigation panel, click Select a Certificate Store > select *SYSTEM


     
  3. Enter in password for Certificate Store > click Continue
  4. From navigation panel, select Manage Certificates
  5. From the list, select Import Certificate > Certificate Authority (CA) > click Continue


     
  6. On the next screen, specify the path and file name of intermediate ca certificate. This is the location and name of the intermediate ca certificate file on the IFS of the iSeries.

    Example: The file is stored in the /home directory and the intermediate ca certificate file was called 'cert.txt' you would put in a path and file name of /home/cert.txt.


     
  7. Click Continue
  8. Create a CA certificate label. This can be any name desired as long as it is unique (should not match any labels for any other certificates).

    Example: CA certificate label: Certificate Authority Name


     
  9. Click Continue
  10. A message stating the intermediate ca certificate has been imported. Click OK


     

Step 3:  Obtain the SSL Certificate

  1. Once your Managed PKI for SSL administrator has approved your Certificate request, you will receive an email with
    the Certificate attached (cert.cer), as well as in the body of the email itself.
  2. Copy the certificate, imbedded in the body of the email and paste it into a text file using Vi or Notepad.
    NOTE: Do not use Microsoft Word or other word processing programs that may add characters.
    Confirm that there are no extra lines or spaces in the file.

    The text file should look like:

    -----BEGIN CERTIFICATE-----

              [encoded data]

    -----END CERTIFICATE-----

    NOTE: Click here to download the certificate from your Managed PKI for SSL subscriber services page.
    Please select X.509 as a certificate format and copy only the End Entity Certificate.
     
  3. Save the certificate as public.txt


Step 4: Install the SSL Certificate 

  1. Start Digital Certificate Manager (DCM).
  2. From navigation panel, click Select a Certificate Store > select *SYSTEM
  3. Enter in password for Certificate Store > click Continue
  4. From navigation panel, select Manage Certificates
  5. From the list, select Import Certificate > select Server or Client
  6. Select the certificate file and complete wizard
  7. Verify your installation with the Symantec Installation Checker

IBM
 
          For further information, refer to IBM documentation