Receiving a signed certificate

A Certificate Authority (CA) creates a certificate from a certificate request. WebSphere® Application Server keystore receives the certificate from the CA and generates a CA-signed personal certificate that your Sametime® Gateway Server cluster can use for Secure Sockets Layer (SSL) security.

Before you begin

The keystore must contain the certificate request that was created and sent to the Certificate Authority. Also, the keystore must be able to access the certificate that is returned by the Certificate Authority.

Expected state: the Deployment Manager and the node agents are started. The servers are stopped.

Note: WebSphere Application Server creates the certificate chain when the signed certificate is received. The chain is constructed from the signer certificates that are in the keystore at the time the certificate is received. Be sure to import all intermediate certificates as signer certificates into the keystore before receiving the CA-signed certificate.

Procedure

  1. Log in to the Integrated Solutions Console.
  2. Click Security > SSL certificate and key management > Key stores and certificates.
  3. Click the keystore that you created previously.
  4. Click Personal certificates.
  5. Click Receive a certificate from a certificate authority.
  6. Type the full path and name of the certificate file generated by the CA.
  7. Select the appropriate data from the list.
  8. Click Apply and Save.

What to do next

Now you are ready to define a new SSL configuration.