Keygen - IBM WebSphere XS40 Command Reference Manual

keygen

Generates a public-private key pair and a CSR (certificate signing request) for a
server.
Syntax
Generates a key pair on a non-HSM appliance
Generates a key pair on an HSM appliance
Parameters
{C | countryName} ISO-code
{L | localityName} locality
{ST | stateOrProvinceName} state
{O | organizationName} organization
{OU | organizationalUnitName} unit-name
{CN | commonName} server-name
rsa {1024 | 2048 | 4096}
# no key bob
Key 'bob' deleted
#
keygen [{C | countryName} iso-code] [{L | localityName} locality] [{ST |
stateOrProvinceName} state] [{O | organizationName} org] [{OU |
organizationalUnitName} unit-name] {CN | commonName} server-name rsa
{1024 | 2048 | 4096} [gen-object] [object-name name] [gen-sscert] [days
number-days] [file-name name] [export-key] [export-sscert] [password
plaintext] [password-alias alias] [using-key name]
keygen [{C | countryName} ISO-code] [{L | localityName} locality] [{ST |
stateOrProvinceName} state] [{O | organizationName} organization] [{OU |
organizationalUnitName} unit-name] {CN | commonName} server-name rsa
{1024 | 2048 | 4096} [gen-object] [object-name name] [gen-sscert] [days
number-days] [file-name name] [export-key] [export-sscert] [password
plaintext] [password-alias alias] [using-key name] hsm [hsm-name name]
[exportable mechanism]
Optionally specifies the ISO two-character country identifier for the CSR.
Optionally specifies the city or town name for the CSR. Use a text string
up to 64 characters in length. If the string contains spaces, enclose in
double quotation marks.
Optionally specifies the unabbreviated state or province name for the CSR.
Use a text string up to 64 characters in length. If the string contains spaces,
enclose in double quotation marks.
Optionally specifies the organization name for the CSR. Use a text string
up to 64 characters in length. If the string contains spaces, enclose in
double quotation marks.
Optionally specifies the organizational unit name for the CSR. Use a text
string up to 64 characters in length. If the string contains spaces, enclose in
double quotation marks.
Required. Specifies the fully qualified domain name of the server for the
CSR. Use a text string up to 64 characters in length.
Indicates the length of the generated RSA key. The default is 1024.
The generation of a 4096-bit key can take up to 30 seconds.
Chapter 11. Crypto configuration mode
227