Knowledge Base

Install SSL Certificate in Cisco Unified Mobility Advantage

If you have not yet created a Certificate Signing Request (CSR) and ordered your certificate, see
CSR Creation Cisco Unified Mobility Advantage.

Importing Your Signed SSL Certificate Files to The Keystore

1. Log in to your Admin Portal and select "SSL Certificate Management".
2. Choose the option to "Import SSL Certificate".
   

   Browse to the keystore file created during the CSR creation process. In the password field, enter the password you created when creating the keystore file.

   For the Intermediate Certificate, choose false. Then, paste in the entire body of the your_domain_name.p7b file that you will have received from DigiCert.
   
   If you did not receive your certificate in .p7b format, you can download it from your DigiCert account.https://docs.digicert.com/en/certcentral/manage-certificates/get-a-copy-of-your-tls-ssl-certificate/download-a-tls-ssl-certificate-from-your-certcentral-account.html

3. Click "Submit", then download the final SSL certificate keystore file. You can name the file anything you choose, such as mykey.keystore.
   

   Your keystore is now ready for use.

Enabling your SSL Certificate in the Cisco Unified Mobility Advantage Admin Portal

1. Log in to the Admin Portal and select "SSL Certificate Management".
2. Choose the option to "Upload Certificate", browse to your newly created keystore, and enter the same password that you used when creating the keystore to enable the certificate for use by your server.
3. Go to Server Controls > Cisco > Control Server, and then stop and start your Managed Server.
   

   Your server should now be configured to use your newly created keystore and certificate files.

4. Your certificate file can be exported for use with other Cisco devices using keystores, including any applicable proxy servers.

Troubleshooting

1. If your secure server is publicly accessible, our SSL Certificate Check tool can help you diagnose common problems.

2. Open a web browser and visit your site using HTTPS. It is best to test with both Internet Explorer as well as Firefox, because Firefox will give you a warning if your intermediate certificate is not installed. You should not receive any browser warnings or errors. If you immediately receive a browser message about the site not being available, then the server may not yet be listening on port 443. If your web request takes a very long time and then times out, a firewall is blocking traffic on TCP port 443 to the web server.