Moving certificates from one system to another

If your company is developing and testing new custom functionality, such as visualization mods, in one system and want to keep signed items valid when moving them from test to production, you can do this by using the export-code-signing-root-certificate and import-code-signing-certificate commands. This way, the signatures made on another server will be treated as if they were signed with a certificate from a trusted certificate authority (CA).

About this task

Note: As certificates from the Spotfire Server will expire with time, these steps might need to be repeated, to ensure that the signatures for the developer remain valid for newly created or updated items.

Before you begin

For instructions on using commands, see Executing commands on the command line.

Procedure

On the test system run export-code-signing-root-certificate.
On the production system, run import-code-signing-certificate.
The root certificate from the test system has been handled. Now, the certificate used for signing can be handled as if it were a certificate from a CA.
Add the certificate used for code signing to the trusted signers for the group Everyone (or for a selected group) on your production system.
See also Trusting custom content in the Spotfire environment.
Restart the Web Player service or installed Spotfire clients.