Ask a Question

Advanced Search

Solution ID : SO25664

Last Modified : 05/02/2018

Installation Instructions for IBM HTTP Server

Solution

This document provides instructions for installing SSL certificate on IBM HTTP Server using iKeyman utility.
 

Step 1: Download the SSL Certificate & Intermediate CA Certificate

  1. Download your certificate from the unique secure link we provide your technical contact via order fulfillment email.
  2. The ZIP file you downloaded contains the following certificates:
    • SSL certificate (i.e. ssl_certificate.arm, also known as end entity certificate, public key certificate, digital certificate or identity certificate).
    • Intermediate CA certificate (i.e. IntermediateCA.arm, also known as chained certificate or signer/issuer of the SSL certificate).
  3. Unzip the files onto the server where you will install the certificate.
     

Step 2: Install the Intermediate CA Certificate

NOTE: To successfully use the certificate, the Intermediate CA certificate and your SSL certificate must be imported into same key file from which the Certificate Signing Request (CSR) was generated. Ikeyman gives errors when you try to import the certificate into a key file that does not contain the certificate request.

  1. Open the iKeyman utility:
    • On Microsoft Windows platforms, click Start > Programs > IBM HTTP Server > Start Key Management Utility.
    • On Unix platforms, start the iKeyman utility by running: /IHS root/bin/ikeyman.sh.
       
  2. Select the key database from the main user interface, then select Open.
  3. Enter the password, then click OK.
  4. Click the "down arrow" to the right, to display the list of options.
  5. Select Signer Certificates, then click Add.
  6. Click Data Type and select a data type, such as Base64-encoded ASCII data.
    NOTE: This data type must match the data type of certificate to be imported.
  7. Enter a file name and location for the Intermediate CA certificate file (i.e. IntermediateCA.arm, as described in Step 1). Click Browse to select a file name and location.
  8. Click OK.
  9. Enter a label for importing the Intermediate CA certificate file (e.g. Intermediate CA, as described in Step 1).
  10. Click OK.
  11. The Signer Certificates field now displays the label of the signer certificate you added.


Step 3: Install the SSL Certificate

  1. Open the iKeyman utility:
    • On Microsoft Windows platforms, click Start > Programs > IBM HTTP Server > Start Key Management Utility.
    • On Unix platforms, start the iKeyman utility by running: /IHS root/bin/ikeyman.sh.
       
  2. In the iKeyman GUI you will see a section called Key database content.
  3. Click on the "down arrow" to the right, to display a list of options.
  4. Select Personal Certificates.


     
  5. From the Personal Certificates section, click Receive.


     
  6. For Data type, leave the default to Base64-encoded ASCII data.


     
  7. Browse to the directory that contains the SSL certificate file (i.e. ssl_certificate.arm, as described in Step 1).
  8. Highlight the SSL certificate file and click Open. Click OK.


     

If you are unable to use these instructions for your server, Symantec recommends that you contact either the vendor of your software or an organization that supports IBM HTTP Server.
 

Step 4: Verify certificate installation

  1. Verify your installation with the Symantec Installation Checker

 

IBM

         For additional information, see IBM Support website.