5.4.1 Administer the Management and Security Server Certificate

Management and Security Server requires a certificate to connect to the Security Proxy. You can generate a self-signed certificate or import a CA-signed certificate and private key.

Generate a self-signed certificate

This form generates a self-signed Management and Security Server certificate that can be used to connect to the Security Proxy. If a self-signed server certificate already exists, the certificate generated here will replace it.

To generate the certificate:

  1. Enter the Common name of the site on which the certificate will be installed, such as hostname.company.com (for an external site) or hostname (for an internal site).

  2. Enter the required information.

  3. Open Advanced Settings, and confirm or change the settings, as desired.

  4. Click +GENERATE and VIEW DETAILS to verify your entries.

Import a key pair

If a server certificate and private key already exist, the imported key pair will overwrite them.

To import the key pair:

  1. Copy the file containing the certificate and the private key into this folder on the Management and Security Server:

    UNIX: /var/opt/microfocus/mss/mssdata/certificates

    Windows: C:\ProgramData\Micro Focus\MSS\MSSData\Certificates

  2. Enter the required information.

    Keystore file name: the file that contains the certificate

    Keystore password: that protects the file that contains the certificate

    Friendly name: so you can easily identify the certificate

  3. Click IMPORT.

Related topics