Apply a certificate to the appliance
This section describes how to apply a certificate for both Private and Public Certification Authority (CA). Most major public CA root certificates are included in the File Director appliance and in client operating systems for the computers and devices that support the File Director client.
You must have the root certificate from your Private CA. If your CA is a subordinate CA you will require its certificate (intermediate/chain) and any other subordinate CA certificates and the root certificate.
File Director uses 2048-bit RSA certificates in Base64 PEM format, which must be installed in the following in order:
- Root Certificate
- Chain 1 Certificate
- Chain 2 Certificate
- Server Certificate
Before continuing with this process, we recommend that you take a hypervisor snapshot to back up the pending CSR state prior to any further configuration.
Apply certificates to File Director
To restart the certificate upload process, click Reset Certificates. Any entered data is deleted without removing the pending Certificate Signing Request (CSR).
- Locate the CER file for the root certificate.
- Open the certificate in a text editor, such as Notepad.
- Copy the text including the
- In the File Director Admin Console, select Configuration > SSL Certificate.
- In the Set New Certificate area of the File Director appliance, paste the certificate details into the text box.
Select Root Certificate and click Upload Certificate.
A message will confirm that the certificate has been installed.
Add your Chain Certificate - select Chain Certificate/Bundle and click Upload Certificate.
If your chain is a bundle, you must add each chain certificate (e.g. number 3 then number 3) to the text box in reverse order.
In the example below, Chain 2 has been added followed by Chain 1.
A message confirms that the certificate has been installed.
Add your Server Certificate - select Server Certificate and click Upload Certificate.
When all certificates have successfully installed, an information message informs you that the certificate has been enrolled.
Reboot the appliance to apply the certificates to the web service.
To test the certificate, close and reopen the browser and connect to the Admin Console using the fully qualified server name specified in the certificate. If the certificates are installed correctly, the browser connects securely without any security warnings.
We recommend that you back up the File Director appliance configuration snapshot.
Was this article useful?
Copyright © 2019, Ivanti. All rights reserved.