Uploading an SSL Certificate

To establish secure connections in IBM® Storage Defender Copy Data Management, you must upload an SSL certificate through the web-based management console of the virtual machine where IBM Storage Defender Copy Data Management is deployed.

Before you begin

  • If you are uploading an LDAP SSL certificate, ensure an LDAP server is running and reachable by IBM Storage Defender Copy Data Management.
  • If you are uploading an LDAP SSL certificate, review LDAP syntax. See LDAP username syntax.
  • To import the HTTP certificate, enter the key store password in the password field. The default key store password is ecx-beta.
  • Make sure that the CA certificate has the FQDN (Fully Qualified Domain Name) set in the SAN (Subject Alternative Name).

About this task

The following two types of certificates are used in the Copy Data Management appliance:
  • Incoming certificate: This certificate is used by web browsers to securely access the Copy Data Management UI. You can configure the incoming certificate through the Admin Console.
  • Outgoing certificate: This certificate is used by Copy Data Management when it connects to external systems, such as LDAPS servers. You configure the outgoing certificate in the Copy Data Management UI.

Procedure

Use the following steps to upload, edit, and delete certificates:
  1. Login to Copy Data Management UI using administrator credential.
  2. From the Copy Data Management UI, click the arrow next to the Support icon, then click Manage Certificates. The Certificates Manager page is displayed with all existing certificates.
  3. To upload a new certificate, complete the following steps:
    1. Click Upload.

      The upload certificate dialog opens.

    2. In the Name field, enter a descriptive name for the certificate.
    3. In the Certificate field, paste the certificate text.
    4. Click Save.

      The certificate is uploaded and appears in the certificate list. A success message confirms the upload.

  4. To edit a certificate name, complete the following steps:
    1. From the certificate list, locate the certificate you want to edit.
    2. Click Edit for the certificate.

      The edit certificate dialog opens.

    3. In the Certificate field, edit the certificate text. Ensure that the certificate content is valid. If a user makes invalid changes, an error message appears indicating that the certificate content is not valid.
    4. Click Save.
  5. To delete a certificate, complete the following steps:
    1. From the certificate list, locate the certificate you want to delete.
    2. Click Delete for the certificate.

      A confirmation dialog appears.

    3. Click Yes to delete the certificate.

      The certificate is deleted from the certificate list.