17.6 Importing a Private/Public Key Pair

If you created a key pair that was exported from another certificate management system, you can import the key pair and then assign it to an Access Manager device. The file needs to be in PFX/PKCS12 (*.pfx or *.p12) format.

  1. Click Security > Certificates.

  2. Select Actions > Import Private/Public Keypair.

  3. Fill in the following fields:

    Certificate name: The name of the certificate. This is a system-wide, unique name used by Access Manager. The name must contain only alphanumeric characters and no spaces. If the name starts with a number, an underline (_) prefix is added to the name so that the name conforms to XML requirements. If the name contains invalid characters, it is automatically renamed.

    Keystore password: Type the encryption/decryption password established when exporting the certificate.

    Certificate data file (PFX/PKCS12): The certificate file to import. You can browse to locate the *.pfx or *.p12 file.

    Certificate data file (JKS): To locate a JKS file, select this option, then click Browse.

  4. Click OK.

    If you receive an error when importing the certificate, the error comes from either NICI or PKI. For a description of these error codes, see Novell Certificate Server Error Codes and Novell International Cryptographic Infrastructure. For general certificate import issues, see Importing an External Certificate Key Pair.

  5. Continue with Adding a Certificate to a Keystore.