Install a Third-Party Signed Certificate
Installing a third-party certificate is a multistep process of submitting a certificate signing request (CSR) to the CA, obtaining the certificate from the CA, combining the certificates into a single file, and then importing the certificate file to the library.
Task 1 Install a Self-Signed Certificate
The library must have a self-signed certificate before you can install a third-party signed certificate. You cannot go directly from the default certificate to a third-party certificate.
Task 2 Export CSR File
- Click Configuration in the left navigation area of the GUI.
- Click the Certificate tab, and then click Export CSR
.
- Submit the CSR to the third-party certifying authority (CA).
Task 3 Combine the Certificates into a Single File
Once obtain a certificate from the CA, use any text editor to assemble the following certificates into a single file for upload:
- Primary certificate of the trust anchor CA (such as VeriSign's public primary root CA)
- Intermediate certificate of the issuing SSL CA. In cases where there is no intermediate issuer, you can omit the intermediate certificate portion of the combined file. This is highly site-specific, so check with your company's security experts for requirements.
- Your newly issued SSL certificate
The combined certificate file should look like:
-----BEGIN CERTIFICATE----- (Encoded Primary certificate) -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- (Encoded Intermediate certificate) -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- (Your encoded SSL certificate) -----END CERTIFICATE-----
Task 4 Import the Certificate File and Restart the Library
- Click Configuration in the left navigation area of the GUI.
- Click the Certificate tab, and then click Import Certificate
.
- Browse to the combined certificate file, and then click Ok.
- Restart the library. The GUI may show the new certificate immediately, but the certificate will not take affect until after the library restarts.