We are using certificate for securing the services/servers.
Are there any thoughts of cautions when assigning/replacing certificate?
Can this be done "online" when users are working? 
What about restarting the servers so the new certificate is used?
Or is there any servers that need to be restarted?

------------------------------
Erik Aasland
IBMi administrator
Fremtind Insurance
------------------------------

Dear Erik

If my faint memory serves, I remember a past post last year in this group about this and I remember that the poster said he had to restart any server(s) that use certificate to enable the new certificate to take effect. I'm fairly certain the replacement can be done on-line. If I can find that thread, I will post it here. 

Find it: https://community.ibm.com/community/user/power/discussion/certificates-and-ssl

There are two different IBM Technote on using IBM i DCM for different OS releases :

https://www.ibm.com/support/pages/digital-certificate-manager-dcm-frequently-asked-questions-and-common-tasks

https://www.ibm.com/support/pages/digital-certificate-manager-i-dcm-frequently-asked-questions-and-common-tasks

------------------------------
Education is not the learning of facts but the training of the mind to think. -- Albert Einstein.
------------------------------
Satid S.

Original Message:
Sent: Tue February 14, 2023 05:00 AM
From: Erik Aasland
Subject: IBM DCM -assign and/or replace Certificate

We are using certificate for securing the services/servers.
Are there any thoughts of cautions when assigning/replacing certificate?
Can this be done "online" when users are working? 
What about restarting the servers so the new certificate is used?
Or is there any servers that need to be restarted?

------------------------------
Erik Aasland
IBMi administrator
Fremtind Insurance
------------------------------

Dear Erik

If my faint memory serves, I remember a past post last year in this group about this and I remember that the poster said he had to restart any server(s) that use certificate to enable the new certificate to take effect. I'm fairly certain the replacement can be done on-line. If I can find that thread, I will post it here. 

Find it: https://community.ibm.com/community/user/power/discussion/certificates-and-ssl

There are two different IBM Technote on using IBM i DCM for different OS releases :

https://www.ibm.com/support/pages/digital-certificate-manager-dcm-frequently-asked-questions-and-common-tasks

https://www.ibm.com/support/pages/digital-certificate-manager-i-dcm-frequently-asked-questions-and-common-tasks

------------------------------
Education is not the learning of facts but the training of the mind to think. -- Albert Einstein.
------------------------------
Satid S.

Original Message:
Sent: Tue February 14, 2023 05:00 AM
From: Erik Aasland
Subject: IBM DCM -assign and/or replace Certificate

We are using certificate for securing the services/servers.
Are there any thoughts of cautions when assigning/replacing certificate?
Can this be done "online" when users are working? 
What about restarting the servers so the new certificate is used?
Or is there any servers that need to be restarted?

------------------------------
Erik Aasland
IBMi administrator
Fremtind Insurance
------------------------------