1,126
edits
Difference between revisions of "IBM Content Manager OnDemand v10.5.0.7 and GSKit support for Post-Quantum Cryptography"
IBM Content Manager OnDemand v10.5.0.7 and GSKit support for Post-Quantum Cryptography (view source)
Revision as of 18:39, 26 April 2024
, 18:39, 26 April 2024Minor corrections and additions
m (Corrected version number) |
m (Minor corrections and additions) |
||
| Line 38: | Line 38: | ||
== Solution == | == Solution == | ||
When creating the key database, use the '-pqc false' option, in order to use the older method. This issue | When creating the key database, use the '-pqc false' option, in order to use the older method. This issue is not resolved by the latest [[Main_Page#IBM_CMOD_Fixpacks_.26_Security_Bulletins|CMOD Fixpack]] (v10.5.0.8) but the documentation has been updated: | ||
[https://www.ibm.com/docs/en/cmofm/10.5.0?topic=clients-setting-up-ssl-windows Setting up SSL with Windows Clients] | |||
In order to generate the key database WITHOUT Post-Quantum Cryptographic methods, add <code>-pqc false</code> to the GSKit <code> -keydb -create</code> command: | |||
gsk8capicmd_64 -keydb -create -db ars-ssl.kdb -genpw -stash -pqc false | gsk8capicmd_64 -keydb -create -db ars-ssl.kdb -genpw -stash -pqc false | ||