Importing your Root CA

Documentation | Support

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

Working With Encrypted Data > Internal Root CA > Importing your Root CA

Importing your Root CA

Help | Content Gateway | v8.5.x

If your organization already has a Root CA, or if you have created a certificate as described elsewhere in this document, you can import it into Content Gateway. The certificate must be trusted by all browsers in your organization.

Be sure to back up any new internal Root CA that you import. See Backing up your internal Root CA for details.

To import your Root CA:

1.

In the Content Gateway manager, go to the Configure > SSL > Internal Root CA > Import Root CA tab.

2.

Click Choose File and browse to select the certificate. The certificate must be in X.509 format and base64-encoded.

3.

Click Choose File and browse to select the private key. It must correspond to the certificate you selected in Step 2.

The certificate and private key format must match.

The private key format must match the format required by the importing node (unencrypted or encrypted).

To verify the certificate and private key format, view the files in a text editor. Use Backup Root CA to export the CA from the database.

Note

For information about converting the private key format, see:

Preparing an Internal Root CA for importing into a FIPS 140-2 enabled node

Converting an RSA key type to a PKCS#8 key type

Converting an encrypted private key to an RSA key

4.

Enter and confirm the Passphrase.

5.

Click Import Root CA. The imported CA is stored in the SSL configuration database.

6.

Restart Content Gateway.

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

Working With Encrypted Data > Internal Root CA > Importing your Root CA

Copyright 2023 Forcepoint. All rights reserved.