Thomas Haze

An issue was identified with QykmImportKeystore API which is used as part of this solution. After Java manages the certificates and stores them back into a PKCS12 file, the content...

I would like to provide a suggestion... (no promises it will work) Please try to import the certificate using the "dcmrenew" instead. Importing a certificate as a CA assumes there...

Your question reminded me of another product that needed to convert to a different CCSID after getting their certificate. The IBM i High Availability product states how to convert to...

The API that is being used is QycdRenewCertificate. The documentation has 3 formats for input. I suspect that the correct format to be used in dcmrenew would be format RNWC0300...

@richardm90, When you get the certificate from the Let's Encrypt acme.sh script, is it an x.509 certificate file with Base64 encoding? Or is it being converted to a PKCS#12 file?...

That error message does not describe enough details to know why it failed. Can you try importing the certificate from DCM (IBM Digital Certificate Manager for i) and seeing what...

I'm not sure what error is coming back from the call to QykmImportKeyStore API, so this may not be the issue. But a change went into Java late last year...