Adding a certificate to the truststore

Certificates are used for verifying the remote control connections that are established by using the Internet Connection Broker. You must add the certificates to the truststore on the remote control server.

Before you begin

If you are using self-signed certificates, you must extract the certificate from the keystore file. For more information about extracting the certificate, see Extracting the certificate from the keystore. If you are using a CA certificate, you are required only to add the root certificate to the server.

About this task

You can add a certificate to the truststore by completing the following steps:

Procedure

  1. Log on to the BigFix® Remote Control server with a valid admin ID and password.
  2. Open the certificate file in a text editor. Select the certificate and copy it to the clipboard.
    Select everything, including the BEGIN CERTIFICATE and END CERTIFICATE lines.
  3. Select Admin > New Trusted Certificate.
  4. Paste the certificate data from the clipboard into the Certificate field.
  5. Click Submit.
    The certificate details are shown.
  6. Verify that the correct certificate is shown and click Submit.

Results

The certificate is added to the server truststore.
Note: After you add certificates to the truststore, all targets must be forced to contact the server so that they update their local truststore. Otherwise, the target cannot access those brokers for which it does not have a certificate. If there are any brokers for which the target does have a certificate, it can still use those brokers. The target automatically updates the truststore during the session and can use the new certificate in the future.