SET DEFAULTTLSCERT (Mark a TLS certificate as the default)

Edit online

Use this command to mark the named certificate as the default certificate in the server’s certificate keystore, cert.kdb.

Note: If command approval is enabled, additional approvals are required to specify this command. For more information, see SET COMMANDAPPROVAL (Specifies whether command approval is required).

Privilege class

To issue this command, you must have system privilege.

Syntax

Read syntax diagramSkip visual syntax diagram Set DEFAULTTLSCert certificate_label

Parameters

certificate_label (Required)
Specifies the label of the certificate that is to be marked as the default in the server certificate keystore. If the label contains any blank spaces or equal signs, it must be enclosed in quotation marks.

Example: Change the default certificate in the server certificate keystore

Set the default certificate to CertFor2024.

SET DEFAULTTLSCert “CertFor2024”

Related commands

Table 1. Commands related to SET DEFAULTTLSCERT
Command Description
CREATE CERTIFICATE Creates a new TLS certificate
SET COMMANDAPPROVAL Specifies whether command approval is required.