Hi Isabella, you could follow this documentation: http://www.port389.org/docs/389ds/howto/howto-ssl.html#replacing-a-server-cert Please, ignore all instructions regarding Fedora 1.0.4. Basically, delete old cert, import new one and replace the certificate nick in nsSSLPersonalitySSL attribute of "dn: cn=RSA,cn=encryption,cn=config" entry. Regards, German. PS: Rergarding certutil usage: https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/9.0/html/Administration_Guide/Managing_SSL-Using_certutil.html ----- Original Message ----- > From: "Isabella Ghiurea" <Isabella.Ghiurea@xxxxxxxxxxxxxx> > To: 389-users@xxxxxxxxxxxxxxxxxxxxxxx > Sent: Thursday, October 9, 2014 10:12:34 PM > Subject: how to install a server cert the DS is down > > HI lIst, > need to know how to replace an existing server cert , I have the new one > signed by CA and need to know how to installed , I just copy in > /etc/pki/tls/certs ( 389admin UI not working) > Is this sufficient? > Thank you > -- > 389 users mailing list > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
