Filter
Top Products
6-22
User Guide for Cisco Digital Media Manager 5.2.x
OL-15762-03
Chapter 6 Authentication and Federated Identity
Procedures
Export the Root CA X.509 Certificate from Your Active Directory Server
Procedure
Step 1 Open a web browser on your Active Directory server and connect to http://localhost/certsrv.
Step 2 Click Download a CA certificate.
Step 3 Choose the current CA certificate.
Step 4 Choose DER encoded.
The X.509 certificate that you export must be DER-encoded, and it can be binary or printable (Base64).
However, when you use Base64, the certificate file must include these lines:
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
Step 5 Click Download CA certificate.
Step 6 Save this certificate in a file.
For example, you might call the certificate ADcertificate.cer.
Step 7 Stop. You have completed this procedure.
Configure DMM to Trust the Active Directory Root CA
Procedure
Step 1 Choose Administration > Security > Authentication > Select Mode.
Step 2 Enter the details for your Active Directory server.
Tip Be sure to use the logical port where your Active Directory server listens for SSL connections. The port
number, by default, is 636.
Step 3
Upload the root CA certificate file that you saved locally.
a. Click Upload, and then click Add.
b. Browse to the file on a local volume.
c. Click the filename and press Enter.
d. Click OK to save your work and dismiss the dialog box.
Step 4 As prompted, use DMS-Admin to restart Web Services (Tomcat).
The installed certificate cannot take effect until after you restart Tomcat.
Step 5 Stop. You have completed this procedure.