Page History

To get your IBM i to trust your self-signed certificate, you need to import the certificate to your IBM i certificate store using the Digital Certificate Manager (DCM).

If you don't have access to the DCM, you will need to get your system admin to import it for you into the IBM i IBM i certificate store.

The default URL for DCM:

     http://hostname/QIBM/ICSS/Cert/Admin/qycucm1.ndm/main0

...

If you can't open this URL, talk to your IBM i IBM i system admin.
On the left pane, choose Select a Certificate Store.Image Removed
 Image Added 
Choose *SYSTEM, click on the Continue button.Image Removed
 Image Added 
Enter the Certificate Store password, then click Continue.Image Removed
 Image Added 
If you don't know the password, choose Reset Password to reset the password.Image Removed
 Image Added 
If you have successfully opened the *SYSTEM certificate store, you should be presented with the following screen:Image Removed
 Image Added 
From the left pane, expand the Manage Certificates menu, and choose Import certificate.Image Removed
 Image Added 
On the main screen, choose Server or client, then click the Continue button.Image Removed
 Image Added 
Fill out the path for the certificate file (.pfx) you exported out of IIS earlier, press the Continue button.Image Removed
 Image Added 
Fill out the password you entered when you exported the certificate, and enter your computer name in the Certificate label field. Press the Continue button.Image Removed
 Image Added 
You should see the following message if your certificate has been successfully imported:Image Removed
 Image Added 
Next: Configuring Windows to Trust the Self-Signed Certificate