How do I install a certificate onto Tumbleweed SecureTransport 4.9?

Problem

How do I install a certificate onto Tumbleweed SecureTransport 4.9 (Axway Brand)?

Resolution

This Knowledgebase article displays the steps to install a certificate onto SecureTransport 4.9.

Part I - Installing Root and Intermediate Certificates

Installing the Root and Intermediate certificates is important to obtain trust in all browsers.  This step should only be performed if this if your first time installing a QuoVadis certificate onto this server.  If this is a renewal request, then you may already have these certificates installed.  You will have to view the list of certificates in the Trusted CAs tab to verify this.  Please note that this article assumes you have access to the Trust/Link certificate download page.
  1. Open up the Certificate Management page by going to Setup and then Certificates.

  2. Select the Trusted CAs tab.

  3. Click on the Import button.

  4. In the Alias field, type in the name of the QuoVadis root certificate.  This can be seen in bold in the Root CA certificate section on the Trust/Link downloads page.

  5. Copy the contents of the Root CA certificate field in the Trust/Link downloads page.  Back in the Certificate Management page, click on Paste certificate in space below and paste in the contents you copied.

  6. Click on the Import button.  This will import the QuoVadis root certificate.

  7. Back in the Trusted CAs tab, click on the Import button again.

  8. In the Alias field, type in the name of the QuoVadis intermediate certificate.  This can be seen in bold in the Intermediate CA certificate section on the Trust/Link downloads page.

  9. Copy the contents of the Intermediate CA certificate field in the Trust/Link downloads page.  Back in the Certificate Management page, click on Paste certificate in space below and paste in the contents you copied.

  10. Click on the Import button.  This will import the QuoVadis intermediate certificate.

Part II - Install Certificate Response File

After you have obtained the certificate from QuoVadis that corresponds with the CSR that you submitted, you will be ready to install it.
  1. Open up the Certificate Management page by going to Setup and then Certificates.

  2. Click on Finish beside the pending CSR in the Pending Local Certificates list.

  3. Type in a certificate alias in the Alias field to give the certificate unique name.  This will help differentiate it from other certificates in the list.

  4. Import the certificate by either:
    1. Click on Import CA signed certificate from file - this will allow you to browse to the *.crt file that you have downloaded.

    2. Click Paste CA signed certificate in space below - with this, you can paste in the PEM encoded data into the field.  This can be seen when opening a PEM encoded certificate with a simple text editor.

    3.  
  5. Click on Finish.

  6. The certificate will be displayed in the list of local certificates.

  7. Restart the protocol server.

Add Feedback