We have a number of digital certificates that were misidentified as either client or server certificates by the applications groups that sent them, but were actually Root or Intermediate CA's. I would like to rename the loaded certificates to better reflect what they are used for, per our company's security policy.
DIGICERT names cannot be re-named. You will have to export the certificate, delete the certificate and re-add it with the desired digicert name.
1. Export the certificate to a dataset:
TSS EXPORT(acid) DIGICERT(digicertname) DCDSN(datasetname) FORMAT(PKCS12DER) PKCSPASS(password)
2. TSS REM(acid) DIGICERT(digicertname)
Delete the certificate.
3. Add the certificate back under a new name.
TSS ADD(acid) DIGICERT(newdigicertname) DCDSN(datasetname) PKCSPASS(password) LABLCERT(lablcertname)
LABLCERT names can be changed with a:
TSS REP(acid) DIGICERT(digicertname) LABLCERT(newlablcertname)