Managing a Certificate
Prerequisites
You have obtained the certificate file and certificate information.
The obtaining methods include:
- CLI
- Run the following command on the Windows 10 or Linux host:
echo -n | openssl s_client -connect IP:PORT 2>&1 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > yourcert.pem
For example, run the following command to generate a Huawei email server certificate:
echo -n | openssl s_client -starttls smtp -connect smtp.huawei.com:587 2>&1| sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > smtp.pem
Or
echo -n | openssl s_client -connect popscn06.huawei.com:995 2>&1| sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > pop.pem
Certificate files in other formats (such as .jks, .cer, and .crt) can be converted.
- Browser
- Enter the address in the browser address bar, click View site information in front of the address to obtain the certificate file.
The following takes obtaining the Huawei email server certificate as an example:
- Open a browser, enter https://dggpro-b.paas.huawei.com/cloudauth/?redirect=https%3A%2F%2Fcn02%2Eemail%2Ehuawei%2Ecom%3A%2Fowa in the address box, and log in to the mailbox using a domain account.
- After login, click View site information in front of the address, and then click Certificate (Valid).
- Click the Certification Path tab, select the root certificate, and click View Certificate.
All branch sites of a website can use the root certificate in the certificate chain for authentication. Therefore, the root certificate is recommended to reduce the certificate maintenance workload.
- In the dialog box that is displayed, click the Details tab, click Copy to File, and click Next. (You can also click the Certificate Path tab to export the root certificate or level-2 certificate. The export method is similar.)
- Select a certificate format and click Next.
- Enter the name of the certificate file to be exported and click Next.
- Click Finish to generate a certificate file. The file name is the complete path of the certificate file.
Procedure
- Sign in to AICC as a tenant administrator and choose .
- Click New.
For details about the parameters, see "Tenant Self-Operations > Managing a Certificate" in AICC Feature Description.
- Click Complete. The certificate is uploaded successfully and takes effect 10 minutes later.
Follow-up Procedure
After the certificate is uploaded, click Edit in the Operation column to update it.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot