Print

Installing the trusted certificate for AE Services

About this task

noteNote

These steps are provided as a general reference only -- follow the instructions on the Web site of your CA.

Procedure

  1. From your browser, go to Web page of your certificate authority and download the certificate chain.
    importantImportant

    You must import the entire certificate chain all the way back to the root certificate.

    • The trusted certificate or certificate chain must be in text format (PEM or Base-64). If you are importing a certificate chain, it must be a text-based PKCS#7 file. Think of a PKCS#7 file as an envelope containing all trusted certificates.

    • It is acceptable to import certificates in the chain individually if they are not available in PKCS#7 format, but all certificates must be in the trusted certificates store.

  2. The certificate authority processes your request and issues a trusted certificate (or certificate chain) for you to download.
  3. Download the entire certificate to the AE Services administrative workstation, and save it with a unique name (for example, C:\temp\aetrucert.cer).
  4. Using a text editor, open the trusted certificate file, and verify the header and trailer:
    • The header and trailer for a PEM or Base 64 file are as follows:

    ----BEGIN CERTIFICATE----- (header)

    -----END CERTIFICATE----- (trailer)

    • The header and trailer for a PKCS#7 file are as follows:

    -----BEGIN PKCS7----- (header)

    -----END PKCS7----- (trailer)

    noteNote

    The header and trailer in your PKCS#7 file must read as follows before you import the contents of the file into the OAM:

    -----BEGIN PKCS7-----

    -----END PKCS7-----

    The header and trailer may read as:

    -----BEGIN CERTIFICATE-----

    -----END CERTIFICATE-----

    You must edit the above to read as follows:

    -----BEGIN PKCS7-----

    -----END PKCS7-----

  5. Contact the Communications Server administrator, and confirm that both the server certificate and the trusted certificate are installed and operating on Communications Server. The certificates must be installed and operating on Communications Server before you can carry out the procedures in the AE Services Management Console.
  6. Continue with the next steps as described in Importing the trusted certificate into the Management Console.