Digital Certificate Losing private key when using the TSS GENREQ command to move it to another system

Document ID : KB000015886
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

How to copy a digital certificate to another system.

Question:

Need to copy a digital certificate from one system to another system using the TSS GENREQ command.

When I add the certificate to the other system, the private key is no longer there.

Answer:

The GENREQ is used to prepare the certificate to be signed and not to copy or transport a digital certificate.

Use the TSS EXPORT command copy or transport a certificate.

1. To copy the certificate to another system, use the TSS EXPORT command:
TSS EXPORT(acid) DIGICERT(digicertname) DCDSN(dataset) PKCSPASS(password) FORMAT(PKCS12B64)


2. FTP dataset in ASCII to the remote system.

3. To add the certificate on the remote system use the TSS ADD command:
TSS ADD(acid) ) DIGICERT(digicertname) DCDSN(dataset) PKCSPASS(password)