15.5 Importing a Signed Certificate

After you receive the signed certificate and the CA chain, you must import it. CA can return the certificate in multiple ways. Typically, the CA either returns one or more files each containing one certificate, or returns a file with multiple certificates in it.

The following figure illustrates a certificate chain example.

Figure 15-1 Illustration of a Certificate Chain Example

To import this certificate chain:

  1. In Administration Console Dashboard, click Security > Certificates, then click the name of a certificate that is in a CSR Pending state.

  2. Click Import Signed Certificate.

  3. In the Import Signed Certificate dialog box, browse to locate the Entity certificate data file or paste the Entity certificate data text into the Certificate data text field.

  4. To import the CA chain, click Add trusted root and then locate the Root certificate data.

  5. Click Add intermediate certificate if you need to continue adding certificates to the chain for example, add Intermediate cert 1 and cert 2 in that order.

  6. Click OK, then click Close on the Certificate Details page.

The certificate is now available for use by Access Manager devices.

NOTE:When there is a server certificate and more than two intermediate CA certificates, use PKCS7 format file and import the certificate and its CA chain.

If you receive an error when attempting to import the certificate, see Section 32.5, Troubleshooting Certificate Issues.