Storing client certificates in a disk file
You must complete the following steps before you can store the client certificate in a disk file:
1. On the Security Server, locate the Client Certificate (.CER), Client Certificate Private Key (.KEY), and the hashed Signing Certificate (.0) file from the Certs\ Root directory used to sign the Client Certificate. These files can be found in the following location:
C:\Program Files\BlueZone Security Server\Certs\New
The Certificate Name that was used during the certificate generation process, is used as the file name.
Note
If you used the Security Server to create the Client Certificate and you are using BlueZone as the secure client, you do not need to copy the Signing Certificate. The reason is that the Security Server Signing Certificate is automatically included as part of the BlueZone client installation on the end user's machine.
2. Copy the desired .CER and .KEY files to a diskette, email them to the end user, or otherwise make them available to the end user in a secure fashion.
Note
For maximum security, you can personally hand these files to the end user. The whole purpose of using Client Certificates is to insure the identity of the end user.
3. Provide the end user with the Private Key password that was used during the Client Certificate generation process. This password is needed by the end user during BlueZone client authentication.
Important
For security reasons, it is recommended that you provide the Private Key password to the End User in such a way that it is not part of or included with the distribution of the .CER and .KEY files.
Follow the steps below to configure the BlueZone client to store the client certificate in a disk file:
1. On the end user's machine, launch the desired BlueZone emulation client.
2. From the menu bar, click Session Configure Configure to display the Connections window.
3. Highlight the desired connection from the Connection List.
4. Click the Security tab to display the Security Options and ensure the Enable Secure Sockets Layer check box is selected.
5. Click the Certificate tab and select the Client Certificate in Disk File option.
6. Click Browse to find the supplied .CER file and click Open to complete the selection.
7. Click Browse to find the supplied Private Key file and click Open to complete the selection.
8. Click OK twice to save the settings.
9. Test the connection by making a connection to the Security Server.
10. A dialog prompting for the Private Key Password appears. Enter the Private Key Password and click OK.
Related Links
Use client certificates for user authentication (Parent Topic)