Installing a Private Certificate on a Client

Prerequisites

You have downloaded an issued private certificate. For details about how to download a certificate, see Downloading a Private Certificate.

Constraints

If the server needs to verify the client certificate, you need to add the root CA of the client certificate to the trusted root CA store on the server. For details, see Trusting a Private Root CA.

Procedure

This procedure uses Windows as an example.

1. Log in to the management console.
2. Click in the upper left corner of the page and choose Security > Cloud Certificate Management Service. In the navigation pane, choose Private Certificate Management > Private Certificate.
3. Click Service List at the top of the page, and choose Security > Cloud Certificate Manager.
4. Click in the upper left corner of the page and choose Security > Cloud Certificate Management Service. In the navigation pane, choose Private Certificate Management.
5. Locate the row containing the desired certificate. In the Operation column, click Download.
6. Select the IIS tab and click Download Certificate.
7. Decompress the downloaded certificate file package client_iis.zip to obtain certificate file server.pfx and private key password file keystorePass.txt.
8. Double-click certificate file server.pfx, select a certificate storage location based on its usage, and click Next.
9. Confirm the name of the certificate file you want to import and click Next.
10. Enter the password obtained from private key password file keystorePass.txt and click Next.
11. Select Place all certificates in the following store, click Browse, select Personal, and click OK, as shown in Figure 1.
    Figure 1 Storing a private certificate
    

12. Click Next and Finish. The certificate is installed when a dialog box is displayed indicating that the certificate is imported successfully.