Configure certificate pinning

  1. Install the first DCE node and configure it.
  2. If a self-signed certificate is used (default option), then the DCE’s certificate will need to be exported with the private key.
    1. Open the Windows Certificate Manager for the Local Machine.
    2. Expand Personal > Certificates.
    3. Locate the certificate with the Friendly name that matches the Certificate name in the Configuration Assistant’s Certificate Management.
    4. Right-click the certificate name and select All Tasks > Export…
    5. On the Certificate Export Wizard click Next.
    6. Select Yes, export the private key.
    7. Click Next on the Export File Format.
    8. Click the Password checkbox and enter a password in the Password and Confirm password text boxes and press Next.
    9. Enter a file name and press Next.
    10. Click Finish.
  3. On the Certificate Management page in the Configuration Assistant, import the certificate from the first DCE node to the remaining DCE nodes.
    1. Select the Equitrac component and select Import Certificate from the Select Action drop-down list.
    2. Enter the Filename and Password of the exported DCE certificate, and a friendly name to identify the certificate.
    3. Click Next. A Binding Ports window opens updating the certificates. Close the binding ports window when done.