Credentials

This tab allows you to add or to remove trusted root certificates from the system. Certificates are only valid if both trading partners trust the CA that signed the other’s root certificate.

Uploading Server Certificate

To upload the server certificates, perform the following steps:

    Procedure
  1. On the System Settings tile, click Certificates > Certificates Store.
  2. On the Certificate Store page, click the Credentials tab
  3. On the Credentials tab, click the Add icon .
    The Add Certificate Authority option and the Create New Identity option are displayed.

Adding Certificate Authority

To add the certificate authority, perform the following steps:

    Procedure
  1. In the Import CA Certificate dialog, enter the name of the certificate in the Alias field and click Upload file to browse and go to the file containing the certificate.
  2. Click Add.

Creating a New Identity

You can create identities (private keys with X.509v3 leaf certificates) and add them to your system. To create a new public key certificate for your server, create a Certificate Signing Request (CSR) and send it to a Certificate Authority (CA) for verification. When you create a CSR, a new private key is also created for decryption/ verification.

You send the CSR, which only carries public information, to a CA. Once the signed certificate is returned, it is attached to the corresponding private key and this new identity becomes usable for decryption or verification, representing itself as stated in the certificate.

To create identity, perform the following steps:

In the New Identities dialog, enter the details as per the following table:

Field Description
Alias Enter the logical name of the host for which the certificate is created using the verified certificate and the existing private key of the host. Example: MyCertificate.
Country Code Only two-digit entries are allowed, due to the restrictions posed by X.500. Example: US.
State Enter the state where the host is located. Example: California.
Organization Enter your company’s name. Example: Widgets Inc.
Organization Unit Enter your organization unit’s name. Example: HR.
Locality Enter your locality. Example: San Jose.
Common Name Fully qualified domain name (FQDN) of the server where the host is located. Example: widgets.com.
Key Length (bits) Key length of the private key. Choose from 512, 1024, and 2048 bits. Example: 512.
Use Business Connect CA Select the checkbox to enable CA.
Host Select a host from the dropdown list.

Searching Credentials

In addition to adding a new credential or selecting it from the list, you can use the Search field to find a specific credential.
    Procedure
  1. Enter the name of the credential that you wish to search.
    The names of one or more certificates that correspond to the search criteria are displayed.

Deleting Credentials

To delete one or more credentials, perform the following steps:

    Procedure
  1. On the Credentials tab, select one or more certificates that you wish to delete and then click the Delete icon..
  2. On the pop-up dialog, click OK.