• The certificates you receive will be:
UTN-USERFirst-Hardware.crt
Digi-SignCADigi-SSLXp.crt or Digi-SignCADigi-SSLXs.crt
your_domain.crt
• These must be imported in the correct order:
UTN-USERFirst-Hardware.crt
Digi-SignCADigi-SSLXp.crt or Digi-SignCADigi-SSLXs.crt
your_domain.crt
• Use the keytool command to import the certificates as follows:
eytool -import -trustcacerts -alias root -file UTN-USERFirst-Hardware.crt -keystore domain.key

For Digi-SSL Xp™ Certificates

Follow these instructions to install your SSL server certificate:

• Your SSL server certificate will be sent to you by email. The email message includes the web server certificate that you purchased in the body of the email message. Copy the certificate from the body of the email and paste it into a simple text editor, such as Notepad

• Save this as yourdomain.cer on your desktop or other location where you can find it later

When you receive your certificates from Digi-Sign there will be your site certificate (named yourdomain.cer) plus 2 others (UTN-USERFirst-Hardware.crt and
Digi-SignCADigi-SSLXp.crt or Digi-SignCADigi-SSLXs.crt), these 2 must be installed as a Trusted Certificate Authority [4] CA and Certificate Chain.

*** Install the SSL Certificate ***

• What format do I need the certificates in to load them using Webstar V4?
• What format do I need the certificates in to load them using Webstar V5?
• Error: "bad unsupported format" when importing certificate.
• Error: "Netscape cannot communicate securely with this server. No common encryption algorithms"

• I have accidentally deleted my Private Key
• I am being told that my Certificate/Key is invalid
• Do I need to use IP based hosting or Name based hosting?
• Cobalt (Apache) fails on start up, what could cause this?
• Error: "Data decryption error"

• Do I need to install all the certificates that I received?
• I have accidentally deleted my Private Key
• I am being told that my Certificate/Key is invalid
• Do I need to use IP based hosting or Name based hosting?

• I need to install all the certificates that I received?
• I have accidentally deleted my "pending request" or "private key"
• I am being told that my Certificate/Key is invalid
• Do I need to use IP based hosting or Name based hosting?

Frequently Asked Questions on Digi-SSL™

The following are frequently asked questions on the most popular web servers that use Digi-SSL™ Secure Soctket Layer [SSL] security.

When you receive your certificates there will be 3 files, open a text editor and then copy the text from each certificate into the text editor to form one file. The certificates should be pasted in the following sequence, your site Certificate named yourdomain.cer, Digi-SignCADigi-SSLXp.crt or Digi-SignCADigi-SSLXs.crt , UTN-USERFirst-Hardware.crt, and the resulting file should look like the following:

-----BEGIN CERTIFICATE-----
(Your Site Certificate Encoded Text)
-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----
(Class3CertificateAthority Encoded Text)

Applying certificates

• To apply a certificate that was sent to you as keyname.cer:
1. Stop the WS_FTP Server service and close Server Manager.

2. Navigate to your host's Security directory on the hard drive. If you are unsure what this is, open Server Manager and at Local System, select the Modify General System Settings button. Note the directory listed in the Security directory field. Each host on your system will have its own folder in this directory. The folder for the host should match the name of the host.