The process for creating the specialized database that is used for storing X.509 certificates and any associated private keys that are required for secure SIP communications is described.
Blueworx Voice Response uses a specialized database for storing X.509 certificates and any associated private keys that are used in secure SIP communications. Blueworx Voice Response expects to find the database file at $SYS_DIR/voip/keyring.db. You need to create this database before you can start any certificate manipulation. If the keyring.db file is not currently in the $SYS_DIR/voip directory, you can create the database with the following command (replacing mypassword with your own password):
wvrcert -keydb -create -db $SYS_DIR/voip/keyring.db -pw mypassword -stash
Ensure you run this command as the user that is used to run Blueworx Voice Response (by default this user is dtuser). wvrcert is a command that is supplied with Blueworx Voice Response to manage keyring.db. Its capabilities are explained in detail in Using the wvrcert utility.
This command creates four files in $SYS_DIR/voip: three database files keyring.db, keyring.rdb and keyring.crl, and also a keyring.sth file, which stashes the database password in a file that is secured by the AIX file privileges system. This stashing allows Blueworx Voice Response to access keyring.db without knowledge of your password.
Blueworx Voice Response accesses the keyring.db database during startup, so Blueworx Voice Response will require a restart to load any database updates.