Create the Certificate Signing Request (CSR) for applying for the certificate to be used for creating the certificate environment and SSL communication.
Perform this operation when the manager is stopped.
The creation procedure and execution example are shown below:

1. Rename or move the following directory and then backup the current certificate environment.

   [Windows Manager]

   Installation_folder\IAPS\smee

   [Linux Manager]

   /etc/opt/FJSVctmg-isas/smee

2. Execute the following command to create a certificate environment.

   Point

   In "[Enter when prompted] password" in the following commands, enter the same password every time.

   [Windows Manager]

   set ISCERT_PATH="Installation_folder\IAPS\smee"
   set ISCERT_FQDN=Manager_FQDN
   
   set ISCERT_TOKEN=SSLTOKEN
   set ISCERT_NICKNAME=SSLCERT
   
   set IS_SSLBIN="%ProgramFiles(x86)%\SecurecryptoLibraryR\PROGRAM\bin"
   set IS_SMEEBIN="%ProgramFiles(x86)%\Common Files\Fujitsu Shared\F3FSSMEE"
   set IS_AHSBIN="Installation_folder\IAPS\ahs\bin"
   
   mkdir %ISCERT_PATH%
   mkdir %ISCERT_PATH%\Slot
   mkdir %ISCERT_PATH%\cert
   mkdir %ISCERT_PATH%\crl
   
   %IS_SSLBIN%\makeslot.exe -d %ISCERT_PATH%\Slot
   [Enter when prompted] password
   [Enter when prompted] password
   
   %IS_SSLBIN%\maketoken.exe -d %ISCERT_PATH%\Slot -s 1 -t %ISCERT_TOKEN%
   [Enter when prompted] password
   [Enter when prompted] password
   [Enter when prompted] password
   [Enter when prompted] password
   [Enter when prompted] password
   
   %IS_SMEEBIN%\cmmkenv.exe %ISCERT_PATH% -todir %ISCERT_PATH%\cert,%ISCERT_PATH%\crl
   %IS_SMEEBIN%\cmsetenv.exe %ISCERT_PATH% -sd %ISCERT_PATH%\Slot -jc 0

   [Linux Manager]

   ISCERT_FQDN=Manager_FQDN;export ISCERT_FQDN
   ISCERT_PATH=/etc/opt/FJSVctmg-isas/smee;export ISCERT_PATH
   
   ISCERT_TOKEN=SSLTOKEN;export ISCERT_TOKEN
   ISCERT_NICKNAME=SSLCERT;export ISCERT_NICKNAME
   
   mkdir -p ${ISCERT_PATH}
   mkdir ${ISCERT_PATH}/Slot
   mkdir ${ISCERT_PATH}/cert
   mkdir ${ISCERT_PATH}/crl
   
   /opt/FJSVsclr/bin/makeslot -d ${ISCERT_PATH}/Slot
   [Enter when prompted] password
   [Enter when prompted] password
   
   /opt/FJSVsclr/bin/maketoken -d ${ISCERT_PATH}/Slot -s 1 -t ${ISCERT_TOKEN}
   [Enter when prompted] password
   [Enter when prompted] password
   [Enter when prompted] password
   [Enter when prompted] password
   [Enter when prompted] password
   
   /opt/FJSVsmee/bin/cmmkenv ${ISCERT_PATH} -todir ${ISCERT_PATH}/cert,${ISCERT_PATH}/crl
   /opt/FJSVsmee/bin/cmsetenv ${ISCERT_PATH} -sd ${ISCERT_PATH}/Slot -jc 0

3. Execute the following command to create a Certificate Signing Request (CSR).

   [Windows Manager]

   %IS_SMEEBIN%\cmmakecsr.exe

   [Linux Manager]

   /opt/FJSVsmee/bin/cmmakecsr

   Example

   [Windows Manager]

   %IS_SMEEBIN%\cmmakecsr.exe -ed %ISCERT_PATH% -sd %ISCERT_PATH%\Slot -tl %ISCERT_TOKEN% -f TEXT -c jp -cn %ISCERT_FQDN% -o fujitsu -ou 4-1f -l "Shizuoka-shi" -s "Shizuoka-ken" -kt RSA -kb 2048 -of d:\sslenv\myCertRequest
   [Enter when prompted] password

   [Linux Manager]

   /opt/FJSVsmee/bin/cmmakecsr -ed ${ISCERT_PATH} -sd ${ISCERT_PATH}/Slot -tl ${ISCERT_TOKEN} -f TEXT -c jp -cn ${ISCERT_FQDN} -o fujitsu -ou 4-1f -l "Shizuoka-shi" -s "Shizuoka-ken" -kt RSA -kb 2048 -of /export/home/myCertRequest
   [Enter when prompted] password

   Point

   The options to specify for the cmmakecsr command differ according to the type of type of certificate or the CA.

   For details on the cmmakecsr command, refer to the "Reference Manual (Command Edition)" of Interstage Application Server V11.

4. Send the CSR to the CA to request that a certificate be issued.