AnsweredAssumed Answered

What is procedure for adding a cert to Virtual Host Certificate Management?

Question asked by Greg Gill on Feb 7, 2020
Latest reply on Feb 10, 2020 by Erica Chalfin

Like • Show 0 Likes0
Comment • 4

I have a cert expiring on 2/20/20 in the Virtual Host Certificate Management page. The team who create certs gave me the new ones, but I have no idea how to add or activate them. I have read the help pages within RSA but they make no sense to me, since I know nothing about certificates. Any information or help will be appreciated.

Jay Guillette

Feb 7, 2020 1:08 PM

Correct Answer

If the CA cert team gave you a file with *.cer or *.p7b extension, that's PKCS#7 format and does not need a password. You would have generated the Cert Signing Request, CSR in the AM Operations Console ...,

...and the private key from the PKI key pair would only be in the AM Web Tier Key store. That's why there's no password on the *.cer or *.p7b file. You CA Cert team would have signed your CSR request file.

If the CA cert team gave you a file with *.pfx or*.p12 extension, that is PKCS#12 format, it needs a password because the CSR was generated somewhere else, with another tool, and therefore the private key is in the .pfx or.p12 file

See the reply in context

No one else had this question

Outcomes

Erica Chalfin

Feb 7, 2020 11:52 AM

Greg Gill,

I looked around on RSA Link and found documents on how to Import a Signed Virtual Host Certificate and how to Activate a Virtual Host Certificate.

Are these of any help?

Regards,

Erica

Actions

Greg Gill @ Erica Chalfin on Feb 7, 2020 1:39 PM

Hello Erica.

Thanks for the quick response. Within the page under Alias, I cannot click on any of the certs to activate. All the certs I have imported say Signer Certificate and I can't do anything with them.

Greg

Actions

Erica Chalfin

@ Greg Gill on Feb 10, 2020 11:15 AM

Greg Gill,

If the answer from Jay Guillette below does not resolve your issue, please How to contact RSA Support and open a case so that a TSE can assist you.

Regards,

Erica

4 Replies

Erica Chalfin Feb 7, 2020 11:52 AM
Mark Correct
Correct Answer
Greg Gill,

I looked around on RSA Link and found documents on how to Import a Signed Virtual Host Certificate and how to Activate a Virtual Host Certificate.

Are these of any help?

Regards,
Erica
Like • Show 1 Like1
Actions
- Greg Gill @ Erica Chalfin on Feb 7, 2020 1:39 PM
  Mark Correct
  Correct Answer
  Hello Erica.
  
  Thanks for the quick response. Within the page under Alias, I cannot click on any of the certs to activate. All the certs I have imported say Signer Certificate and I can't do anything with them.
  
  Greg
  Like • Show 0 Likes0
  Actions
  - Erica Chalfin @ Greg Gill on Feb 10, 2020 11:15 AM
    Mark Correct
    Correct Answer
    Greg Gill,
    
    If the answer from Jay Guillette below does not resolve your issue, please How to contact RSA Support and open a case so that a TSE can assist you.
    
    Regards,
    Erica
    Like • Show 0 Likes0
    Actions
Jay Guillette Feb 7, 2020 1:08 PM
Unmark Correct
Correct Answer
If the CA cert team gave you a file with *.cer or *.p7b extension, that's PKCS#7 format and does not need a password. You would have generated the Cert Signing Request, CSR in the AM Operations Console ...,
...and the private key from the PKI key pair would only be in the AM Web Tier Key store. That's why there's no password on the *.cer or *.p7b file. You CA Cert team would have signed your CSR request file.
If the CA cert team gave you a file with *.pfx or*.p12 extension, that is PKCS#12 format, it needs a password because the CSR was generated somewhere else, with another tool, and therefore the private key is in the .pfx or.p12 file
Like • Show 1 Like1
Actions