We have a number of digital certificates that were misidentified as either client or server certificates by the applications groups that sent them, but were actually Root or Intermediate CA's. I would like to rename the loaded certificates to better reflect what they are used for, per our company's security policy.

Release:
Component: TSSMVS

DIGICERT names cannot be re-named. You will have to export the certificate, delete the certificate and re-add it with the desired digicert name. 

Example: 
1. Export the certificate to a dataset: 
TSS EXPORT(acid) DIGICERT(digicertname) DCDSN(datasetname) FORMAT(PKCS12DER) PKCSPASS(password) 
2. TSS REM(acid) DIGICERT(digicertname) 
Delete the certificate. 
3. Add the certificate back under a new name. 
TSS ADD(acid) DIGICERT(newdigicertname) DCDSN(datasetname) PKCSPASS(password) LABLCERT(lablcertname) 

LABLCERT names can be changed with a: 
TSS REP(acid) DIGICERT(digicertname) LABLCERT(newlablcertname)