You may be using a Web browser that does not support standards for accessibility and user interaction. Find out why you should upgrade your browser for a better experience of this and other standards-based sites...

Dartmouth Home  Search  Index

Dartmouth Home | Search | Index

 Dartmouth home page
Computing at Dartmouth
 

Home | Resources | Services | Support | About
Computing > Support >  Library >  Safe Computing > Defenses > Authentication > PKI > Certificates >  

Netscape 8.x and 9.0

Netscape 8 and 9 may ask if you want it to remember your password. We ask that you do not allow the browser to remember your DND or certificate passwords, as this will significantly reduce your security.

Getting a Digital Certificate

To get a digital certificate, follow the instructions provided below:

  1. Consider what you will be using for a password; see Selecting a Password for tips.
  2. Click on the following link: https://collegeca.dartmouth.edu/. A new browser window will open. If the new browser window covers the previous window, move it to the right so you can see these instructions.
  3. It will take you to the Dartmouth CAPSO v.1.0 Certificate Authority & PKI Solution Web page. A new browser window will open. If the new browser window covers the previous window, move it to the right so you can see these instructions.
  4. On the Dartmouth CAPSO v.1.0 Certificate Authority & PKI Solution Web page, click Request a Personal Cert under Certificate Requests.
  5. At the Dartmouth Web Authentication page, enter your full name and password as it appears in the Dartmouth Name Directory (DND), then press LOGIN. (This is the same as your BlitzMail login.)
  6. When the Certificate Contents page appears, verify that the fields contain the following entries:
    • Common name - Enter your full name as it appears in the DND (e.g., Susan Q. Jones).
    • Email - Enter your Dartmouth e-mail address (e.g., susan.q.jones@dartmouth.edu).
    • Keysize - Change the setting to 1024 (Medium Grade).
    • Certificate Type - Select Software Certificate.
  7. Click the Submit button and enter a password for the Software Security Device, if prompted.
  8. When the Confirmation Data Web page appears, verify the data, then click Install Certificate.
  9. The browser will prompt you to verify your request to install the certificate. Click OK.
  10. The browser will alert you that the certificate was installed. Click OK.
  11. You now have a digital certificate. Proceed to the following section to install Dartmouth's Root Certificate. 

Add Dartmouth's Certificate Authority Certificate

  1. Install the Dartmouth College root certificate by going to the Dartmouth CAPSO v.1.0 Certificate Authority & PKI Solution Web page.
  2. Click on Root Certificates under Download.
  3. When the Download certificates Web page appears, click on Dartmouth CertAuth1 CA (Dartmouth Root CA).
  4. In the dialog box that appears, check all three boxes.
    • Trust this CA to identify Web sites.
    • Trust this CA to identify e-mail users.
    • Trust this CA to identify software developers.
  5. Click OK.
  6. You now have Dartmouth's Root certificate. Close the CAPSO window.

Verifying a Certificate

To check whether your certificate was created successfully:

  1. Select Options from the Tools menu. (In Mac OS X, select Preferences from the Navigator menu.)
  2. Under Browser Options, click Advanced.
  3. Scroll down and expand the Certificates section and click on Manage Certificates. (In Mac OS X, click on the Encryption tab, then click View Certificates.)
  4. Click the Your Certificates tab to view your certificate.  The Purposes column should contain Client, Sign, Encrypt.
  5. If you want further confirmation, click on your certificate, then click View to see the contents of the certificate.

Importing and Exporting a Certificate

You may find at some point while using PKI that you need to import or export your certificate. Should that occasion occur, please use the instructions below.

  1. Select Options from the Tools menu. (In Mac OS X, select Preferences from the Navigator menu.)
  2. Select the Advanced category.
  3. Select the sub-category Certificates. (In Mac OS X, click on the Encryption tab.)
  4. Click the Manage Certificates button. (View Certificates in Mac OS X.)
  5. In the displayed window, click the Your Certificates tab.

Importing a Certificate

  1. Click the Import button.
  2. In the dialog box that appears, select the file containing the certificate you want to import.
  3. In response to the Please enter the master password for the Software Security Device alert, provide the .p12 file password.
  4. In response to the Please enter the password that was used to encrypt this certificate backup alert, provide the password for your certificate store.

Exporting a Certificate

  1. Select the certificate.
  2. Click the Backup button.
  3. In the File Name to Backup field, enter a file name, then select the format PKCS 12 Files in the menu.
  4. An alert will display the message Please enter the master password for the Software Security Device.
  5. Enter the password for your certificate store to authorize the key transfer.
  6. The next window prompts you to Choose a Certificate Backup Password.
  7. Fill in both blanks with the same password (that protect the keys in transit), then click OK.
  8. Finally, you will receive the following alert: Successfully backed up your security certificate(s) and private key(s).

03/14/08

Last Updated: 3/14/08