Upload SSL certificates to ensure that end users have a trusted connection to their environment.

About this task


During this procedure, the environment is temporarily unavailable and you cannot perform administrator operations. Upload the certificates after confirming that no users are on the system and no tasks, such as importing AppStacks, publishing images, provisioning desktops, assigning desktops, and so on, are running.

You must upload the CA.crt and SSL.crt files, and the .key private key.

The CA certificate and the SSL certificate must be in PEM format, which is a BASE64-encoded DER representation of an X.509 certificate. They both have a .crt extension, and look like this:


The private key must not have a password or passphrase associated with it. The .key file looks like this:




  1. Select Settings > General Settings.
  2. Click Upload Certificate.
  3. For each of the certificate files listed in the Upload Certificate dialog box, click Select and navigate to the appropriate file.
  4. When all of the certificate files are selected, click Save.

    The console will be unresponsive for 5 to10 minutes for all administrators while the certificates are applied.

  5. When the system is responsive again, refresh the browser page and use your credentials to reauthenticate.
  6. Verify that the certificates are valid on the General Settings page.