Importing a client certificate to an end-user browser
Use this procedure to import the client certificate into the end-user browser. The certificate is transmitted from the administrator in a .pfx file, using the procedure
“Exporting a client certificate”.
| The following is a generic procedure for importing a certificate into a browser. You must provide the end-user with specific instructions for importing the certificate according to browser type/version and local operating procedures. |
To import a client certificate into Internet Explorer
1. Retrieve the .pfx file that was transmitted to the end-user from the administrator and store the file in a folder that is accessible from the end-user computer.
1. Open an IE browser on the end-user computer, and select Tools > Internet Options > Content > Certificates and select the Personal tab.
The Certificates window appears.
2. Open the Personal tab and select Import.
The Certificate Import Wizard welcome page appears.
3. Click Next to continue from the Certificate Import welcome page.
The File to Import window appears.
4. Select
Browse and ensure that the
Files of type is set to
Personal Information Exchange (*.pfx, *.p12), or
All Files (*.*), or whatever file format was used to export the certificate in
“Exporting a client certificate”.
5. Browse to the location on the end-user computer where the .pfx file is stored, select the certificate file and select Open.
6. The path to the certificate location appears in the File to Import window. Select Next.
The Password window appears.
7. Type the password supplied by the administrator that is used to retrieve the private key and select Next.
The Certificate Store window appears.
8. Select the Place all certificates in the following store button, browse to the Personal Certificate Store and select Next.
9. When
Completing Certificate Import Wizard appears, click
Finish to import the certificate and private key to the location specified in step
8.
The certificate and private key are now imported to the Personal certificate store in the end-user browser. The browser is now has the appropriate client certificate for PKI authentication on the FortiMail unit.