Import a Console Certificate

Document created by RSA Information Design and Development on Jun 13, 2017Last modified by RSA Information Design and Development on Jun 13, 2017
Version 2Show Document
  • View in full screen mode

After you import all of the certificates in the signing chain from your certificate authority (CA), you can replace the existing secure socket layer (SSL) certificate with a new certificate.

Before you begin 

  • You must be an Operations Console administrator.

  • Generate a certificate signing request (CSR), and submit the CSR to your CA.

  • Download the CA root certificate.

  • Download any other certificates that are part of the signing chain if the SSL certificate does not contain the complete chain.

  • Download the new SSL certificate.

Procedure 

  1. In the Operations Console, click Deployment Configuration > Certificates > Console Certificate Management.

    Beginning with the root certificate, perform the following steps for each certificate in the signing chain.

  2. In the Console Certificate Management page, click Import Certificate.

  3. In the Import Certificate page under Certificate Basics, do one of the following:

    For a console certificate made in response to a CSR from the Operations Console:

    • In the Import Certificate field, browse to the location where the certificate is stored. This file contains either a CA root certificate or the SSL certificate from the CA.

    • For Type of Certificate to Import, select PKCS #7 (*.cer or *.p7b).

    For a console certificate made in response to a CSR from a certificate tool of your choice:

    • In the Import Certificate field, browse to the location where the certificate is stored. This file contains one or more certificates and the private key for the new certificate. Do one of the following:

      • If the SSL certificate file contains the complete certificate chain up to the CA root certificate, then import the PKCS #12 file. In the Password field, enter the password for the PKCS#12 file.

      • If the SSL certificate file does not contain the complete certificate chain up to the CA root certificate, then import each of the CA certificates in the certificate chain in a PKCS #7 file before importing the SSL certificate in a PKCS #12 file. In the Password field, enter the password for the PKCS#12 file.

  4. Click Import.

After you finish 

Activate the new certificate to replace the existing SSL certificate. For instructions, see Activate a New SSL Console Certificate.

Related Concepts

Console Certificate

 

 


Attachments

    Outcomes