IBM Hub/Switch Switch User Manual


 
Chapter 3 System Preparation
176 September 2002 HPSS Installation Guide
Release 4.5, Revision 2
ii. Check password for the trusted store (cacerts):
% $JAVA_HOME/bin/keytool -keystore cacerts -list
Type "changeit" when prompted for password.
iii. Change password for trusted store:
% $JAVA_HOME/bin/keytool -keystore cacerts -storepasswd \
-new <cacerts_password>
Type "changeit" when prompted for password.
iv. Verify new password for trusted store:
% $JAVA_HOME/bin/keytool -keystore cacerts -list
Type "<cacerts_password>" when prompted for password.
C. Configure the Secure Socket Layer (SSL)
These procedures define the Security Provider:
% vi $JAVA_HOME/lib/security/java.security
Look for the following lines:
% List of providers and their preference orders (see above):
% security.provider.1=sun.security.provider.Sun
security.provider.2=com.ibm.crypto.provider.IBMJCA
Add the following line:
security.provider.N=com.sun.net.ssl.internal.ssl.Provider
where "N" is the next available number (3 in this example)
2. On the machine where SSMDS will be executed:
These procedures use the keytool utility to create the ds keystore file. The administrator-
selected password is set on the keystore file at creation time. For each use of the keytool
utility here, type <ds_keystore_password> when prompted for password.
A. Work in the /var directory:
% cd /var/hpss/ssm
B. Configure key and certificates for SSMDS:
i. Generate a public and private key and a certificate for the SSMDS, and store them
in the file keystore.ds:
% $JAVA_HOME/bin/keytool -genkey \