This page allows you to manage the properties of the server certificates that belong to the specified server. By clicking on a certificate nickname, you can view the details of the server certificate. You can also view the certificate chain by clicking on the + box in front of the certificate name. This expands the view, showing each certificate in the chain.
Server Selection
Use the Object Selector button next to the server name to select a different server, if needed.
New
Click New to begin the server certificate creation wizard. This wizard will walk you through the steps of creating a new server certificate.
Delete
Clicking this button deletes the selected certificate and, if located in the eDirectory tree, the associated private key. You must be an administrator or have administrator rights to delete a server certificate. Once you delete a server certificate, you cannot recover any information that was encrypted using the public key that was in the certificate. Signatures made using the private key associated with the deleted certificate remain valid, but you should keep a copy of the certificate and signed data as proof of the signature's validity.
Export
This button opens a new dialog box that allows you to export the public key certificate in DER or Base64 format, or the public key certificate, certificate chain, and private key in PKCS #12 (PFX) format.
Revoke
Use Revoke if you want to retain the certificate in eDirectory but do not want the certificate to be used. Select a certificate and click Revoke to start the Revoke Certificate wizard.
Validate and Certificate Status
There are two ways to check the validity of a certificate. You can select the certificate you want to validate, then click Validate from the menu options or you can click validate... next to the certificate nickname. Either option starts a validation test on the certificate that checks to see if the certificate, and all certificates in its certificate chain, are valid. The validation test reports the status and a reason, if applicable. The status then appears in the Certificate status field.
The validation test can return one of two values:
To see a list of reasons why a certificate may be invalid, click here.
A trademark symbol (®, TM, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark. For information on trademarks, see Legal Notices.