Hello,
I am working on a Queue Manager deployed in the "MQ on Cloud" offer.
It is a SaaS offering deployed on containers, all administration is done via a web console, and there are some differences with a classic Queue Manager.
One difference is that the certificate store is not exposed, you add or remove certificates via the console.
I created a new certificate for the Queue Manager, I have 3 files: the root certificate, the Queue Manager certificate, and the secret key.
I was able to import the root certificate via the "Trust Store" choice. When I try to import the Queue Manager certificate via the "Key Store" choice, I get an error:
PEM Certificate Scan Failed: A certificate uploaded to the key store cannot contain a private key.
Problem: My certificate is in PEM format, and does not contain a private key.
I haven't found much documentation on this topic, all KCs are about "MQ on premise" or "MQ in containers". There is no information about the specifics of "MQ on Cloud", especially for certificate management.
Would you have a pointer for me?
Bonus question: The default certificate (qmgrcert.pem) is signed by Let's Encrypt and valid for 90 days. What happens after 90 days? It is automatically renewed I hope?
Thank you.
------------------------------
Luc-Michel Demey
DEMEY CONSULTING
lmd@demey-consulting.fr#IBMChampion
------------------------------