To replace the self-signed certificate on a server with a certificate from a trusted
source, you must import the new certificate into the Local Computer Certificate Store of your
server before you can select it in Server Admin.
Before you begin
Follow your company's procedure regarding the enrollment of certificates. If your
situation requires you to create a custom request, make sure you follow the
recommendations required for Security Center. To import the
certificate to the Security Center server, you need the password for the private key used to
generate the certificate.
What you should know
To improve the security of your system, you should replace the
self-signed certificate on all Security Center servers.
Procedure
Import the certificate to the Security Center server
-
On your main server, open Manage computer certificates from the
Windows Start menu.
-
Under Certificates (Local Computer), right-click
Personal, and then click .
-
In the Store Location section, select Local
Machine and click Next.
-
In the File to import window, browse to the certificate you want
to import and click Next.
-
Enter the password for the private key and click Next.
-
Select Place all certificates in the following store and ensure
that Certificate store is set to Personal.
Click OK and then Next.
-
Click Finish to complete the certificate import process.
Add the certificate to Security Center
-
Open Server Admin on your server.
-
Click the Genetec Server tab.
-
Under Secure communication, click Select
certificate.
-
In the Select certificate dialog box, select the new certificate
you imported and click Select.
NOTE: If the certificate you selected is not valid (not using Legacy key for
example), an error message is displayed and the certificate cannot be
applied.
-
Click Save, and restart the Genetec™ Server service.