Retrieve from port
Use this page to retrieve a signer certificate from a remote SSL port. The system connects to the specified remote SSL host and port and receives the signer during the handshake using an SSL configuration.
From the admin console, click...
Security | SSL certificate and key management | Configuration settings | Manage endpoint security configurations | {Inbound | Outbound} | ssl_configuration | Related items | Key stores and certificates | key store | Additional Properties | Signer certificates | Retrieve from port
To retrieve a signer certificate from a specific port, you enter the host and port, select an SSL configuration from the pull-down list, and enter an alias to identify the signer certificate. Click Retrieve Signer Information and information about the signer certificate is displayed, such as the serial number of the certificate, who the certificate is issued to and by, the certificate finger print, and the expiration information for the certificate. If we want the certificate to be stored in the keystore, click Apply or Save.
Host
Host name to which you connect when attempting to retrieve the signer certificate from the SSL port.
Information Value Data type: Text
Port
The SSL port to which you connect when attempting to retrieve the signer certificate.
In a network deployment environment, specify the correct secure sockets layer (SSL) port number when attempting to retrieve a signer certificate from a remote SSL port.
- Use the port number associated with the port name, WC_adminhost_secure, when retrieving a signer certificate from the deployment manager.
- Use the port number associated with the port name, CSIV2_SSL_MUTUALAUTH_LISTENER_ADDRESS, when retrieving a signer certificate from a node.
All certificates must be in place prior to retrieving them from the deployment manager or from base servers.
Information Value Data type: Text
SSL configuration for outbound connection
The SSL configuration used to connect to the previously specified SSL port. This configuration is also the SSL configuration containing the signer after retrieval. This SSL configuration does not need to have the trusted certificate for the SSL port as it is retrieved during validation and presented here.
Information Value Data type: Text
Alias
Certificate alias name to reference the signer in the key store, which is specified in the SSL configuration.
Information Value Data type: Text
Retrieved signer information
Signer certificate information if it is retrieved from the remote host and port.
Create a Secure Sockets Layer configuration Keystores and certificates collection Signer certificates collection