Manualshelf

Administrator Guide

ManualsBrandsDell ManualsCloudLink SecureVMHybrid Cloud System for Microsoft
131132133134135136137138139140
Input Parameter Details
StoreName Possible values include:
Root
Use this for the Trusted Root Certication Authorities store.
CA
Use this for the Intermediate Certication Authorities store
MY
Use this for the Personal store.
Step 4: Prepare the le share with the new .pfx certicates
Prerequisites
Before you do this step, make sure that the new certicates are in .pfx le format. If not, you can use the Certicates snap-in
(Certmgr.msc) to convert them. For more information, see TechNet article Export a certicate with the private key (http://
technet.microsoft.com/library/cc737187(v=ws.10).aspx).
Make sure that you know the password that was used to protect the private key.
Procedure
1 On the Console VM, create a le share; for example, \\<
Prex
>CON01\ImportCerts. Make sure that the <Prex>-System account
has Read/Write permissions.
2 Do either of the following:
If you are using one wildcard certicate for both VMs, and it is registered at the domain level (for example, *.contoso.com), go to
the step 3.
If you are using certicates that are registered at the website level, copy the folder tree from the share that you created in Step 1
to this new share, and then use the guidance in the next step to replace the existing .pfx les in the folder tree with the new ones.
You could also create a similar folder tree in the new share, instead of copying the folder tree.
3 Prepare the \\<
Prex
>CON01>\ImportCerts le share with the new .pfx certicates. You can specify only one .pfx le per folder.
Depending on the certicates that you have, do one of the following:
If you have a wildcard certicate for the domain (for example, *.contoso.com), you only need to copy the .pfx le to the share,
for example:
\\<Prex>CON01\ImportCerts\contoso.com.pfx. This layout is the quickest way to update all websites with the same
SSL certicate.
You can also add the .pfx les at the VM level. For example:
\\<Prefix>CON01\ImportCerts
\MgmtSvc-AdminAPI
\<Prefix>APA01
CF75D3CAE126353B0700F9820ECBA0F67F75001C.pfx
\MgmtSvc-AdminSite
\<Prefix>APA01
CF75D3CAE126353B0700F9820ECBA0F67F75001C.pfx
\MgmtSvc-AuthSite
<Prefix>APT01
CF75D3CAE126353B0700F9820ECBA0F67F75001C.pfx
\MgmtSvc-Monitoring
\<Prefix>APA01
CF75D3CAE126353B0700F9820ECBA0F67F75001C.pfx
\MgmtSvc-TenantAPI
\<Prefix>APA01
CF75D3CAE126353B0700F9820ECBA0F67F75001C.pfx
Security
131