X.509 certificate in
ASN.1 DER encoded
X.509 CRL in PEM file
Default CA certificates
The following certificates are installed by default:
SOAP API Certificate Authority: Before allowing a SOAP client to connect, the
controller checks the certificate supplied by a SOAP client to ensure that it is issued by a
trusted certificate authority (CA).
Dummy Authority: Used by the internal RADIUS server. You should replace this with
your own CA certificate.
Entrust.net Secure Server Certification Authority: This is the Authorize.Net CA
certificate. It is used to support credit card payments via Authorize.Net.
Management Console Dummy Authority: Used when the management tool
communicates with HP PCM/PMM software.
For security reasons, you should replace the default certificates with your own.
Certificate and private key store
This list displays all certificates installed on the controller. The controller uses these
certificates and private keys to authenticate itself to peers.
Items provided in this list are as follows:
A sequentially assigned number to help identify certificates with the same common name.
Name of the certificate holder. Select the name to view the contents of the certificate.
Items carried in the file
One or more X.509 certificates
One X.509 CRL
One X.509 CRL
Working with certificates
Popular format in the Unix
world. X.509 DER certificate is
base64 encoded and placed
lines. Multiple certificates can
be repeated in the same file.
Most basic format supported for
Same format as X.509 certificate
in PEM format, except that the
lines contain BEGIN CRL and