Dell EMC Unity: How to import an SSL certificate signed by a local Certificate Authority (User Correctable)

service@SPB spb:~/user/mycerts> svc_custom_cert unitycert
ERROR: Certificate </tmp/cert.MIbZ4L/unitycert.crt> is invalid
 

The certificate must be base64 encoded before installing it. Use the Windows tool "certutil" to accomplish that.

Sample input:
Certutil -v -encode unitycert.crt unity64cert.crt

Sample output:
Input Length = 1520
Output Length = 2148
CertUtil: -encode command completed successfully.

However sometimes, even after encoding the .crt file, svc_custom_cert still shows the below error:

ERROR: Certificate </tmp/cert.MIbZ4L/unitycert.crt> is invalid.

Here we can try the following:

1. Per the KB article 21122: Dell Unity: How to replace Unisphere self-signed SSL certificates with signed certificates from a local Certificate Authority. (User Correctable), we may need both .pk and .crt files with same name (see Step 5.) Editing the encoded file with .pk file name help.

2. If the error persists, backup all the files (.pk, .crt, and .csr) and remove them from the array. Re-create the .crt files following KB article 21122, and rename the signed encoded .csr file using command prompt to meet the above criteria, and then install it.