A Client Reference Certificate is necessary to authenticate the Client to the Server during the initial SSL negotiation. When the Client Certificate is presented during the SSL negotiation, the Server verifies the authenticity of the Certificate against the Trusted Root Certificate installed on the server, then matches the presented Client Certificate to the Client Reference Certificate. If the Certificates match and the Client Certificate is not expired, the user is granted access.
On the MenuBar, select Certificates:Install to display the Install Certificates On Server dialog.
Choose the Client Reference Certificates radio button.
Click the Browse... button the select the Client Certificate file, then click Open.
Click the Install... button to create the hashed Client Reference Certificate File
Select View Clients... to view the current list of Client Reference Certificates.