Listing CAs

To display a list of trusted CAs in the HODServerKeyDb.kdb key database, do the following:

For Windows platforms, for example, enter the following command: 
java com.ibm.gsk.ikeyman.ikeycmd -cert -list CA 
-db your_install_directory\bin\HODServerKeyDb.kdb
-pw <password> -type cms
where your_install_directory is your Host On-Demand installation directory.

By default, HODServerKeyDb.kdb comes with the CA certificates of the following well-known trusted CAs:

  • IBM World Registry CA
  • Integrion CA Root (from IBM World Registry)
  • VeriSign Class 1 Public Primary CA
  • VeriSign Class 2 Public Primary CA
  • VeriSign Class 3 Public Primary CA
  • VeriSign Class 4 Public Primary CA
  • VeriSign Test CA
  • RSA Secure Server CA (from VeriSign)
  • Thawte Personal Basic CA
  • Thawte Personal Freemail CA
  • Thawte Personal Premium CA
  • Thawte Premium Server CA
  • Thawte Server CA