For each application listed in “Current Certificates”, create a new certificate. If you do not use the DN as listed in the appendix table, then you will also need to assign the required permissions for the certificate security profile in the Client Automation security browser.
To ensure that the newly created certificate is visible to the Client Automation security browser, the DER encoded certificate should be imported into the Client Automation certificate database on the manager nodes.
The command to create the new certificates is as follows:
cacertutil create -o:certname.p12 -od:certname.der -op:passphrase “-s:CertDN” -i:rootname.p12 -ip:rootpassphrase -d:730
Specifies the output file name for the PKCS#12 packaged certificate.
Specifies the output file name for the DER encoded certificate.
Specifies the pass-phrase to protect the PKCS#12 output certificate.
Specifies the DN to whom the certificate should be issued.
Specifies the file name of the root PKCS#12 certificate.
Specifies the pass-phrase protecting the root PKCS#12 certificate.
Specifies the lifetime of the certificate in days (the example shows 2 years (= 730 days)).
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|