To manage certificates

Steps

1. Access either the Administration Server or the Server Manager and click the Security tab.

2. Click the Manage Certificates link.

   • If you are managing a certificate for a default configuration using the internal cryptographic module, a list of all installed certificates with their type and expiration date is displayed. All certificates are stored in the directory server_root/alias.

     • If you are using an external cryptographic module, such as a hardware accelerator, you must first enter your password for each specific module and click OK. The certificate list will update to include certificates in the module.

3. Click the name of the certificate you want to manage. A page displays with management options for that type of certificate. Only CA certificates allow you to set or unset client trust. Some external cryptographic modules will not allow certificates to be deleted.

4. Specify the desired action. The following options are available:

   • Delete certificate or Quit for certificates obtained internally

     • Set client trust, Unset server trust, or Quit for CA certificates

       Certificate information includes the owner and who issued it. Trust settings allow you to set client trust or unset server trust. For LDAP server certificates, the server must be trusted.