Renaming Digital Certificates in the TOP SECRET Database
book
Article ID: 131937
calendar_today
Updated On:
Products
Top SecretTop Secret - LDAP
Issue/Introduction
We have a number of digital certificates that were misidentified as either client or server certificates by the applications groups that sent them, but were actually Root or Intermediate CA's. I would like to rename the loaded certificates to better reflect what they are used for, per our company's security policy.
Environment
Release: Component: TSSMVS
Resolution
DIGICERT names cannot be re-named. You will have to export the certificate, delete the certificate and re-add it with the desired digicert name.
Example: 1. Export the certificate to a dataset: TSS EXPORT(acid) DIGICERT(digicertname) DCDSN(datasetname) FORMAT(PKCS12DER) PKCSPASS(password) 2. TSS REM(acid) DIGICERT(digicertname) Delete the certificate. 3. Add the certificate back under a new name. TSS ADD(acid) DIGICERT(newdigicertname) DCDSN(datasetname) PKCSPASS(password) LABLCERT(lablcertname)
LABLCERT names can be changed with a: TSS REP(acid) DIGICERT(digicertname) LABLCERT(newlablcertname)