Provide the Trusted Certificate to the Client
By requiring the server to authenticate itself to the client, you protect the
data that is transmitted from the server to the client over HTTPS.
To enable server authentication, you provide a trusted certificate to the client. The trusted
certificate enables the client to verify the identity of the server during the
To provide the trusted certificate to the client, assume the same user role
as the web server user. Then, split the certificate to extract a
trusted certificate. Then, insert the trusted certificate in the client's truststore file in
the /etc/netboot hierarchy.
In this example, you assume the web server user role of nobody. Then,
you split the server PKCS#12 certificate that is named cert.p12, and insert the
trusted certificate in /etc/netboot directory for wanclient-1.
wanserver-1# su nobody
wanserver-1# wanbootutil p12split -i cert.p12 -t \