Deployment Guide
Table Of Contents
- Dell Security Management Server Installation and Migration Guide v10.2.13
- Introduction
- Requirements and Architecture
- Pre-Installation Configuration
- Install or Upgrade/Migrate
- Post-Installation Configuration
- Administrative Tasks
- Ports
- SQL Server Best Practices
- Certificates
Import a Root Certificate
If the root certificate Certificate Authority is Verisign (but not Verisign Test), skip to the next procedure and import the signed
certificate.
The Certificate Authority root certificate validates signed certificates.
1. Do one of the following:
● Download the Certificate Authority root certificate, and store it in a file.
● Obtain the enterprise directory server root certificate.
2. Do one of the following:
● If you are enabling SSL for Compliance Reporter, Security Server, or Device Server, change to the component conf
directory.
● If you are enabling SSL between the Security Management Server and the enterprise directory server, change to <Dell
install dir>\Java Runtimes\jre1.x.x_xx\lib\security (the default password for JRE cacerts is changeit).
3. Run Keytool as follows to install the root certificate:
keytool -import -trustcacerts -alias <ca-cert-alias> -keystore .\cacerts -file <ca-
cert-filename>
For example, keytool -import -alias Entrust -keystore .\cacerts -file .\Entrust.cer
Example Method to Request a Certificate
An example method to request a certificate is to use a web browser to access the Microsoft CA Server, which is set up
internally by your organization.
1. Navigate to the Microsoft CA Server. The IP address is supplied by your organization.
2. Select Request a certificate and click Next.
Microsoft Certificate Services
3. Select Advanced Request and click Next.
Choose Request Type
Certificates
89