Retrieve from port

Retrieve from port

Use this page to retrieve a signer certificate from a remote SSL port. The system connects to the specified remote SSL host and port and receives the signer during the handshake using an SSL configuration.

Security | SSL certificate and key management | Configuration settings | Manage endpoint security configurations | {Inbound | Outbound} | ssl_configuration | Related items |} Key stores and certificates | key store | Additional Properties | Signer certificates | Retrieve from port

To retrieve a signer certificate from a specific port, you enter the host and port, select an SSL configuration from the pull-down list, and enter an alias to identify the signer certificate. Click Retrieve Signer Information and information about the signer certificate is displayed, such as the serial number of the certificate, who the certificate is issued to and by, the certificate finger print, and the expiration information for the certificate. The certificate to be stored in the keystore, click Apply or Save.

Host Host name to which you connect when attempting to retrieve the signer certificate from the SSL port.
Port SSL port to which you connect when attempting to retrieve the signer certificate. In a network deployment environment, specify the correct secure sockets layer (SSL) port number when attempting to retrieve a signer certificate from a remote SSL port. Use the port number associated with the port name, WC_adminhost_secure, when retrieving a signer certificate from the deployment manager. Use the port number associated with the port name, CSIV2_SSL_MUTUALAUTH_LISTENER_ADDRESS, when retrieving a signer certificate from a node. All certificates must be in place prior to retrieving them from the deployment manager or from base servers.
SSL configuration for outbound connection SSL configuration used to connect to the previously specified SSL port. This configuration is also the SSL configuration containing the signer after retrieval. This SSL configuration does not need to have the trusted certificate for the SSL port as it is retrieved during validation and presented here.
Alias Certificate alias name to reference the signer in the key store, which is specified in the SSL configuration.
Retrieved signer information Signer certificate information if it is retrieved from the remote host and port.

Related

Keystores and certificates collection
Signer certificates collection

Host	Host name to which you connect when attempting to retrieve the signer certificate from the SSL port.
Port	SSL port to which you connect when attempting to retrieve the signer certificate. In a network deployment environment, specify the correct secure sockets layer (SSL) port number when attempting to retrieve a signer certificate from a remote SSL port. Use the port number associated with the port name, WC_adminhost_secure, when retrieving a signer certificate from the deployment manager. Use the port number associated with the port name, CSIV2_SSL_MUTUALAUTH_LISTENER_ADDRESS, when retrieving a signer certificate from a node. All certificates must be in place prior to retrieving them from the deployment manager or from base servers.
SSL configuration for outbound connection	SSL configuration used to connect to the previously specified SSL port. This configuration is also the SSL configuration containing the signer after retrieval. This SSL configuration does not need to have the trusted certificate for the SSL port as it is retrieved during validation and presented here.
Alias	Certificate alias name to reference the signer in the key store, which is specified in the SSL configuration.
Retrieved signer information	Signer certificate information if it is retrieved from the remote host and port.