In the CA Client Automation code base, the application specific certificates are referenced through a tag name rather than the certificates assigned DN. The relevant tag names are detailed in "Current Certificates". The certificate should be installed only to the nodes that require them to authenticate to a DSM scalability server or manager.
The command to install an application-specific certificate has the following format:
cacertutil import -i:certname.p12 -ip:passphrase -t:tagname
Specifies the name of the PKCS#12 certificate file to import.
Specifies the pass-phrase used to protect the certificate.
Specifies the tag name of the certificate.
To make the certificate visible to the DSM security browser, the DER encoded certificate must be imported into the certificate database on the manager nodes. The command to import a DER encoded certificate has the following format:
cacertutil import -i:certname.der -it:X509V3
Specifies the name of the DER encoded certificate to import.
Specifies the type of certificate to import. X509V3 specifies DER encoding.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|