Create CA repository :
runmqckm -keydb -create -db "/var/mqm/ssl/wmqca.kdb" -pw sarasu10 -type cms -expire
30 -stash
Create CA certificate:
runmqckm -cert -create -db "/var/mqm/ssl/wmqca.kdb" -pw sarasu10 -label wmqca -dn
"CN=WMQ CA,OU=WMQ,O=Abhijeet,L=Chelmsford,ST=Essex,C=UK" -expire 30
Extract the public key for QMGR1 for use with other queue managers ***
runmqckm -cert -extract -db "/var/mqm/qmgrs/QM1/ssl/qm1.kdb" -pw sarasu10 -label
ibmwebspheremqqm1 -target qm1cert.arm
Extract the public key for QMGR1 for use with other queue managers ***
runmqckm -cert -extract -db "/var/mqm/qmgrs/QM2/ssl/qm2.kdb" -pw sarasu10 -label
ibmwebspheremqqm2 -target qm2cert.arm
add the public key for QMGR2 to the QMGR1 key repository **
runmqckm -cert -add -db /var/mqm/qmgrs/QM1/ssl/qm1.kdb -pw sarasu10 -label
ibmwebspheremqqm2 -file qm2cert.arm
add the public key for QMGR1 to the QMGR2 key repository ***
runmqckm -cert -add -db /var/mqm/qmgrs/QM2/ssl/qm2.kdb -pw sarasu10 -label
ibmwebspheremqqm1 -file qm1cert.arm
check:
dis chs(QM1.TO.QM2) ALL
runmqakm -certreq -list -db
runmqckm -cert -list -db "/var/mqm/qmgrs/QM1/ssl/qm1.kdb" -pw sarasu10