Importing the signed certificate back into the User Key Store

Signing a certificate creates a .pem file, which is only intended for importing back into the User Key Store that contains the original certificate with the matching private key. For a server certificate this is the platform/station User Key Store that originally created the certificate and CSR. For an intermediate certificate or a code-signing certificate, this is, most likely, the Workbench User Key Store on the secure computer, which you use to sign other certificates.

You have the signed .pem files. The focus is on the User Key Store in the appropriate stores location (Workbench or platform/station).
  1. Click Import.
  2. Locate and select the signed certificate's .pem file (the output of the certificate signer or the .pem file you received from a third-party CA) and click Open.
    The Certificate Import window opens.
  3. Confirm that you are importing the correct certificate and click OK.

    If the Alias of the certificate you are importing is not the same as the Alias of the certificate you are replacing, the system prompts you for the Alias of the certificate to replace.

  4. If needed, enter the Alias and click OK.
    The green shield icon () replaces the yellow shield icon () next to the certificate Alias in the User Key Store tab.
  5. Using the operating system, delete the .pem file(s) from the secure Workbench computer.