Steps to Import a 3rd Party Certificate:
- Ensure that you have a digital certificate and private key in a format that Cerberus FTP Server understands. First, you will need to generate a new certificate (either by purchasing one from a public Certificate Authority, or can install a Certificate Authority in your domain). You need to have a public certificate and a private key along with the passphrase for the private key.
- Open the Server Manager by selecting it from the main menu.
- Select the Security tab and scroll down to the 'Server Key Pair' section.
- A file open dialog will appear that will allow you to select the public certificate provided by your certificate authority. Certificate file extensions vary, but .crt and .pem are the most common.
- Under the Server Key Pair group, Click the folder icon at the end of the Private Key Path field.
- A file open dialog will appear that will allow you to select the server’s private key. If your public and private keys are in the same file then set this path to be the same as the Certificate file path.
NOTE: Cerberus understands both DER and PEM encoded certificate formats.
- Needs Key Password – Check this option if the digital certificate is encrypted with a password or passphrase.
- Password – If the digital certificate is encrypted then this is the password or passphrase used to decrypt your digital certificate. The password is the same password you used to create the certificate request with your 3rd party certificate authority.
- Click the Verify button to verify that Cerberus FTP Server can read the certificate and private key. If there are no errors then the certificate is valid and can be used by Cerberus.
- Click Update to save your information. If no certificate was previously being used or the certificate file path changed then Cerberus will immediately configure itself to use the new certificate.
- If you had FIPS 140-2 on before and would like to continue using it, click the slider to turn it back 'ON' and restart the Cerberus service.