Renaming Digital Certificates in the TOP SECRET Database
Article ID: 131937
Updated On:
Products
Top Secret
Top Secret - LDAP
Issue/Introduction
We have a number of digital certificates that were misidentified as either client or server certificates by the applications groups that sent them, but were actually Root or Intermediate CA's. I would like to rename the loaded certificates to better reflect what they are used for, per our company's security policy.
Environment
Release:
Component: TSSMVS
Component: TSSMVS
Resolution
DIGICERT names cannot be re-named. You will have to export the certificate, delete the certificate and re-add it with the desired digicert name.
Example:
1. Export the certificate to a dataset:
TSS EXPORT(acid) DIGICERT(digicertname) DCDSN(datasetname) FORMAT(PKCS12DER) PKCSPASS(password)
2. TSS REM(acid) DIGICERT(digicertname)
Delete the certificate.
3. Add the certificate back under a new name.
TSS ADD(acid) DIGICERT(newdigicertname) DCDSN(datasetname) PKCSPASS(password) LABLCERT(lablcertname)
LABLCERT names can be changed with a:
TSS REP(acid) DIGICERT(digicertname) LABLCERT(newlablcertname)
Example:
1. Export the certificate to a dataset:
TSS EXPORT(acid) DIGICERT(digicertname) DCDSN(datasetname) FORMAT(PKCS12DER) PKCSPASS(password)
2. TSS REM(acid) DIGICERT(digicertname)
Delete the certificate.
3. Add the certificate back under a new name.
TSS ADD(acid) DIGICERT(newdigicertname) DCDSN(datasetname) PKCSPASS(password) LABLCERT(lablcertname)
LABLCERT names can be changed with a:
TSS REP(acid) DIGICERT(digicertname) LABLCERT(newlablcertname)
Feedback
Yes
No
Powered by
