This assumes you have reviewed Getting Started with IBM Global Security Kit (GSKit).
Before creating a key database file, you may want to list the currently supported key database types.
${install_root}/gsk8/bin/gsk8capicmd_64 -keydb -list
Which should return something like this.
Currently supported key database types:
cms
pkcs11
pkcs12
csp
pkcs7
In this example, a CMS (Certificate Management System) key database named "example.kdb" is created. The -stash option is not necessary, but is highly encouraged. The -stash option will store the password in the stash file (example.sth) so that you can simply use the -stashed option in subsequent commands which will get the password from the stash file, which is very handy when it comes to automation.
${install_root}/gsk8/bin/gsk8capicmd_64
-keydb
-create
-db example.kdb
-type cms
-stash -pw your_password
In this example, a PKCS12 key database file named "example.p12" is created.
${install_root}/gsk8/bin/gsk8capicmd_64
-keydb
-create
-db example.p12
-type pkcs12
-stash -pw your_password
Did you find this article helpful?
If so, consider buying me a coffee over at