News
Abstract
IBM Digital Certificate Manager for i (DCM) has multiple enhancements to improve the user experience and extend the usefulness of digital certificates.
• Create certificates with multiple subject alternative names.
• Specify IPv6 addresses to further identify the servers using the certificate.
• Work with multiple certificates to perform delete or validation actions on many certificate items.
• Import and validate certificates created with RSA public keys of 8192 bits in length.
Content
Enhancements have been added to IBM Digital Certificate Manager for i to improve the user experience for more complex environments by adding support for multiple Subject Alternative Names, IPv6 Subject Alternative Names, and the ability to perform actions on many certificates in a single request.
- Multiple Subject Alternative Names (SAN)
- IPv6 Subject Alternative Names support
When creating a certificate, specify the DNS Names and IP Addresses that identify the various servers that will present the certificate during TLS handshakes and be successfully validated by client applications. Multiple subject alternative name types and multiple instances of each type may be specified to extend the identity of the certificate.
- Work with multiple certificates
The ability to Delete or Validate many certificates is available using the Work with Multiple Certificates button.
Work with Multiple Certificates provides a method to quickly select certificate items using a checkbox and the ability to Delete or Validate all selected items. A button to Select All Expired certificates is available to help identify expired certificates for deletion.
- Import and validate 8K RSA certificates
IBM Digital Certificate Manager for i is updated to support importing and validating of certificates that are issued by a Certificate Authority (CA) using an RSA key length of 8192 bits.
IBM i 7.3 PTFs required
Was this topic helpful?
Document Information
Modified date:
11 December 2023
UID
ibm17048723