Replacing default certificates - To replace the self-signed certificate on a server with a certificate from a trusted source, you must import the new certificate into the Local Computer Certificate Store of your server before you can select it in Server Admin. - Security Center 5.12

Security Center Administrator Guide 5.12

Product
Security Center
Content type
Guides > Administrator guides
Version
5.12
ft:locale
en-US
Last updated
2025-04-16

To replace the self-signed certificate on a server with a certificate from a trusted source, you must import the new certificate into the Local Computer Certificate Store of your server before you can select it in Server Admin.

Before you begin

Follow your company's procedure regarding the enrollment of certificates. If your situation requires you to create a custom request, make sure you follow the recommendations required for Security Center. To import the certificate to the Security Center server, you need the password for the private key used to generate the certificate.

What you should know

To improve the security of your system, you should replace the self-signed certificate on all Security Center servers.

Procedure

Import the certificate to the Security Center server

  1. On your main server, open Manage computer certificates from the Windows Start menu.
  2. Under Certificates (Local Computer), right-click Personal, and then click All Tasks > Import.
  3. In the Store Location section, select Local Machine and click Next.
  4. In the File to import window, browse to the certificate you want to import and click Next.
  5. Enter the password for the private key and click Next.
  6. Select Place all certificates in the following store and ensure that Certificate store is set to Personal. Click OK and then Next.
  7. Click Finish to complete the certificate import process.

Add the certificate to Security Center

  1. Open Server Admin on your server.
  2. Click the Genetec Server tab.
  3. Under Secure communication, click Select certificate.
  4. In the Select certificate dialog box, select the new certificate you imported and click Select.
    The Select certificate dialog box in Server Admin with a list of certificates.
    NOTE: If the certificate you selected is not valid (not using Legacy key for example), an error message is displayed and the certificate cannot be applied.
  5. Click Save, and restart the Genetec™ Server service.