Load a Certificate
Operators can either load their own .pfx or .p12 file with the private key and the certificate, or the .jks or .p12 file that was generated using one of the options through the ARM GUI. Prior to uploading, the file is validated.
The file must be a PKCS12 keystore (with an extension of .p12, .pfx, or .jks). KeyStores of type JKS (Java KeyStore) are no longer supported.
|
1.
|
Open the Configurator Certificates screen (Settings > Administration > Configurator Certificates) and scroll down to the Load Certificate section. |
|
2.
|
Do either of the following: |
|
●
|
If you created the KeyStore file using the ARM GUI and Generate Private Key and CSR option was selected: |
|
◆
|
Browse and select the file (.jks or .p12 extension) in the Load KeyStore field. |
|
◆
|
Browse and select the CSR file in the Load CSR Response field. |
|
●
|
If you do not have a CSR file, browse and select the file (.pfx or .p12 extension) in the Load PFX/PKCS12 file field. |
The CSR Response file format must be p7b, which holds a full chain of certificates.
|
3.
|
If you created the file with a non-default password, enter it in the Password field. For a .pfx file, also specify the PFX Passphrase. |
|
4.
|
Click Upload. The file is validated and uploaded if found to be valid. |
Uploading a certificate triggers an NGINX restart. This may cause a brief and temporary interruption of the UI. If a timeout occurs, pressing Ctrl + F5 can resolve the issue.