Import certificates from a master domain manager into the Dynamic Workload Console

About this task

If you want to import a ca.crt file from a master domain manager into the Dynamic Workload Console, you can use Certman to import the file.

If certificates being imported are part of a chain consisting of 3 or more certificates (one Root CA, followed by one or more Intermediate CAs, followed by the end user certificate), then the ca.crt must contain the Root ca certificate only. Any Intermediate CA certificates must be stored in the additionalCAs subfolder, which therefore becomes a mandatory subfolder. Each Intermediate CA must be stored in the additionalCAs subfolder in its own file.

Note: From V10.2.3, if certificates being imported are part of a chain, the ca.crt can contain also the intermediate CAs. In this case, it must begin with one or more intermediate CA certificates and end with the Root ca.

Procedure

  1. Browse to the following path: <DWC_INST_PATH>/bin/certman, where <DWC_INST_PATH>/bin/certman is the Dynamic Workload Console installation directory.
  2. Import the ca.crt file by running the following command: 
    certman import (-inpath <input path> [-storepasswd <store pwd>]|-url <host:port> -storepasswd <store pwd>) -alias <alias> [-forcealias] [-workdir <working directory>]

    Where:

    inpath
    Specify the folder that contains the ca.crt file.
    storepasswd
    Optionally, specify the password of the keystore on the master domain manager.
    url
    The URL of a server that contains the CA chain to be imported (for example, the master domain manager server).
    Where
    host
    The fully qualified host name or IP address of the server.
    port
    The HTTPS port.
    alias
    Specify an alias to be used in the truststore file during the import.
    forcealias
    Optionally, specify an alias to be used in the trustore file that overwrites the existing alias. Use this parameter if the master domain manager already communicates with the Dynamic Workload Console.
    workdir
    Optionally, specify the working directory used by the command for storing data while running. When the command stops running, the working directory is deleted. Ensure you have write access to the specified directory and enough space is available.

Results

The ca.crt file has been imported in the Dynamic Workload Console.