Manage Client Certificates


Client-authenticated SSL requires the registration of the server's certificate with the browser, and in addition, the registration of the browser's certificate (or certificate authority) with the server.

Client-authenticated SSL also requires the use of the browser's private key, which is held in the client's keystore file.This file is password-protected, and requires the password to be entered in the connection dialog for client authenticated SSL to work.


The default keystore for trusted client certificates is the $userhome/.advldap/clientcacert file, which comes with a test certificate, this test certificate is only for demonstration purposes and you can delete it.



To open Manage Client Certificate dialog, choose from one of the following options:

From the manage server certificate dialog you can perform the following functions


To view, select a certificate to view and click the view certificate button. The view certificate button will open the view certificate dialog, where you can look at the details of the certificate.



To add a certificate, click the Add Certificate button. This will open the select file dialog where you can browse to the certificate to add. Once the certificate is added you will see it in the left hand table view.


To delete, select a certificate to delete in the left pane and click Delete Certificate button.

To set private key, select a certificate and browse to the key file

To export private key, select a certificate and click the Export Private Key.