You might want to use a self-signed certificate in your test environment, since this type of certificate is easier to obtain than a signed certificate from a valid authority.
You can use iManager to export the Certificate Authority (CA) from your eDirectory server to generate your self-signed certificate.
Log in to iManager with the eDirectory administrator’s username and password.
Click Administration > Modify Object.
In the Security container, browse to the CA object called TreeName CA.Security. For example, IDMTESTTREE CA.Security.
Click OK.
Click Certificates > Self-Signed Certificate.
Select the self-signed certificate that you want to use.
Click Export.
Clear Export private key.
Click Export format > DER.
Click Next.
Click Save the exported certificate.
Click Save File.
iManager saves the file as TreeName cert.der. For example, IDMTESTREE cert.der.
Click Close.
Move the saved cert.der file to a location where you want to store the exported certificate.
Before generating the self-signed certificate, ensure that you have a keystore and certificate request file.
Create a keystore and a certificate request file.
For more information, see Section 48.5, Creating a Keystore and Certificate Signing Request.
Log in to iManager.
Navigate to Certificate Server > Issue Certificate.
Browse to the .csr file created in Step 6.
Click Next twice.
For the certificate type, click Unspecified.
Click Next twice.
Update the SSL settings in the Configuration utility. For more information, see Section 48.2, Updating the SSL Settings in the Configuration Utility.
Restart the application server.