Updated on 2024-06-25 GMT+08:00

Exporting a Private CA Certificate

After a private CA is created and activated, you can export the private CA certificate.

If your web services are accessible through browsers, add the root certificate to your browser trust list and install the private certificate issued by the root CA on your web server to implement HTTPS communications between the client and the server.

If your web services are accessible through a client like Java, manually install the root certificate on the client to ensure that the client can validate the encrypted information on the server.

This topic walks you through how to export a private CA certificate.

Prerequisites

The private CA for which the certificate is to be exported is in the Activated state.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the page and choose Security & Compliance > Cloud Certificate Management Service. In the navigation pane on the left, choose Private Certificate Management > Private Certificate. The Private Certificate page is displayed.
  3. Locate the row of the desired private CA and click Export CA Certificate in the Operation column.


  4. In the displayed dialog box, click OK.

    When you click OK, PCA will use the download tool provided by the browser to download the private CA certificate to the specified local directory.

    Now, you will obtain a private CA certificate file named root CA name_certificate.pem.