Replacing or renewing a certificate is similar to importing it for the first time, but you also replace the old certificate with the new one.
Before you begin
You have received the signed certificate from the certificate authority. You have determined whether the certificate is signed by a root CA or an intermediate CA. If the certificate was signed by an intermediate CA, then you have imported into the keystore all intermediate CA certificates. Now you are ready to import the signed certificate itself into the keystore.
About this task
Make sure the certificate file you have received does not contain any text lines before the " -----BEGIN CERTIFICATE-----"
line appears on top. These lines can cause the certificate import process to fail, and therefore you must delete these lines if they are present in the certificate file.
Parent topic: Setting up SSL on a single server
Previous topic: Setting up Sametime Gateway to use a new certificate
- Log in to the Integrated Solutions Console.
- Click Security -> SSL certificate and key management -> Related items -> Key stores and certificates -> NodeDefaultKeyStore .
- Under Additional Properties, click Personal certificates.
- Click Receive a certificate from a certificate authority.
- Type the full path and name of the certificate file.
For example on windows: c:\mycertificate.cer
- Do not change the default data type on the list (Base64-encoded ASCII Data).
- Click Apply and Save.
- From the Integrated Solutions Console, click Security -> SSL certificate and key management -> Key stores and certificates.
- Select the keystore that contains the new and old certificates.
- Select the old certificate and click Replace.
- Verify that the old certificate is listed in the "Old certificate" field.
- Select the new certificate from the "Replace with" list.
- Click OK and Save.
- Restart the Sametime® Gateway server.
For a standalone: the single Java™ process.
For a cluster configuration: restart the DMGR, STGW servers, XMPP proxies, SIP Proxies.
You do not need to restart the node agents.