Deployment Guide
Configuration Guide 41
8
Import the converted signing authority certificate. Return to the DOS window. Type:
keytool -import -trustcacerts -file <csr-filename> -keystore cacerts
9
Now that the signing authority certificate has been imported, the server certificate can be imported (the chain of trust
can be established). Type:
keytool -import -alias dell -file <csr-filename> -keystore cacerts
Use the alias of the self-signed certificate to pair the CSR request with the server certificate.
10
A listing of the cacerts file will show that the server certificate has a
certificate chain length
of
2
, which indicates that the
certificate is not self-signed. Type:
keytool -list -v -keystore cacerts
Note the certificate fingerprint of the second certificate in the chain is the imported signing authority certificate (which
is also listed below the server certificate in the listing).
The server certificate has successfully been imported, along with the signing authority certificate.