ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » IBM MQ Installation/Configuration Support » Automated certificate renewal

Post new topic  Reply to topic
 Automated certificate renewal « View previous topic :: View next topic » 
Author Message
stomilso
PostPosted: Thu Aug 31, 2006 5:38 pm    Post subject: Automated certificate renewal Reply with quote

Newbie

Joined: 31 Aug 2006
Posts: 1
Is there any automated way (out of the box) that certificates can be renewed automatically for MQ series?

Everything I see in the documentation requires manual steps using something like iKeyMan to renew the certificates (i.e.: generate the cert. requset, submit it to the CA, install the certificate).

I came across something in the following Redbook (WebSphere MQ Security in an Enterprise Environment) that indicates it may be possible:

http://www.redbooks.ibm.com/redbooks/pdfs/sg246814.pdf

P.393:
Quote:
Certificate request processing
Many customers will wish to automate the process whereby certificate requests are processed by a CA or RA. Such processes can be easily automated when certificates are just being re-issued to change the expiry date, but for first time processing, the process really needs to involve human interaction.
Customers may wish to explore using the IBM Business Process Manager
(formerly MQSeries Workflow) product to automate this process.


Can someone expand on that point and tell me if that's accurate / possible? Whenever I dig deeper I see nothing but manual steps.

Cheers,
Scott
Back to top
View user's profile Send private message
jefflowrey
PostPosted: Thu Aug 31, 2006 6:28 pm    Post subject: Reply with quote

Grand Poobah

Joined: 16 Oct 2002
Posts: 19981
umm... I guess the iKeyMan utility also has a command line interface... so as long as you know the commands to renew the cert, you can put those in a script...
_________________
I am *not* the model of the modern major general.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » IBM MQ Installation/Configuration Support » Automated certificate renewal
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.