Applies to: Hanwha WRNs
Summary
In some enterprise environments, a local Certificate Authority (CA) issues certificates to ensure hosts within the organization can be trusted. Additionally, web filters or firewalls may inject certificates when clients attempt to connect to remote servers. If you encounter a Server Certificate Error in WAVE, these factors could be the cause. As always, check the server logs to determine the root cause of the certificate errors.
This article provides instructions for installing certificates into the trust store on a WRN.
Installing a Certificate in the Trust Store
To install a certificate in the trust store:
-
Ensure the certificate you are using is in PEM format, which begins with the following line:
----BEGIN CERTIFICATE----
NOTE: If the certificate does not start with this line, it is likely in DER
format and will need to be converted. - Move the certificate files to your WRN via USB or internet download, ensuring they are in the same unzipped folder that contains only certificate files.
- Open a terminal and change directories to the path of the folder containing the certificate files. This is the location of the file you copied in step 2.
cd /path/of/folder/containing/certificates
- Run the ls command (lower case) and confirm you are in the right directory. You should see all of your certificate file names displayed.
- If the certificate files do not already have a .crt extension, run the following command in the correct directory:
for i in ./*.* ; do mv "$i" "${i%.*}.crt" ;done
- Run the ls command (lower case) again to confirm the file extensions changed as expected.
- Move the files from Step 3 to /usr/local/share/ca-certificates by running the following command:
sudo mv ./* /usr/local/share/ca-certificates
- Run ls /usr/local/share/ca-certificates to ensure the transfer was successful.
- Run sudo update-ca-certificates to update the trust store.
Comments
0 comments
Please sign in to leave a comment.