Exporting & Importing certificates
Introduction
By exporting a certificate installed in your Web browser, you can import the same certificate to other applications and PCs.
Each Web browser and OS stores certificates in the following locations.
OS | Apps etc. | Storage of imported certificates (References for each Apps) |
---|---|---|
Windows | Windows (For wireless LAN configuration (JAIST, eduroam)) | Windows Certificate Store (Control Panel -> Internet Options -> Contents) |
Microsoft Edge | ||
Google Chrome | ||
Internet Explorer | ||
Firefox | Managed in Firefox (Options -> Privacy & Security -> View Certificates) | |
macOS | macOS (For wireless LAN configuration (JAIST, eduroam)) | Keychain Access.app (Applications → Utilities) |
Safari | ||
Google Chrome | ||
Firefox | Managed in Firefox (Preferences -> Privacy & Security -> View Certificates) |
Installing
For details on how to install the certificate, refer to the following manual provided by NII.
* Don't import to a PC that may be used by others.
* Don't forget to check "Mark this key as exportable" in the Certificate Import Wizard for Windows OS.
[Password required at the time of import]
The password required when importing downloaded files is listed in the "Access PIN (initial password for import)" of the J-UPKI system (only available on campus LAN including SSL-VPN).
- The password for the private key (Edge and Chrome on Windows OS)
- The password for "XXXX.p12" (Safari and Chrome on mac OS)
- The password that was used to encrytp this certificate backup (Firefox)
- The password to extract the certificate (Android OS)
- The password for certificate (iOS)
For exported certificates, the password will be the one you set yourself.
UPKI Digital Certificate Issuing Service Manual
*When using the on-campus Wi-Fi service (SSID: JAIST / eduroam), please refer to the following.
[Windows OS] Internet Explorer/ Edge/ Chrome/ Opera (Windows) Edition
[mac OS] Safari/ Chrome/ Opera (macOS) Edition
[Android OS] Android Edition
[iOS] iOS Edition
Import of certificates issued after December 14, 2023
Please note the following procedure when importing certificates issued after the maintenance on or after December 14, 2023.
[Windows]
- For the certificate store, check "Automatically select the certificate store based on the type of certificate".
- If the root certificate is not installed, a Security Warning screen will pop up. Confirm that the "thumbprint (sha1)" is "D5629710 C17BD663 91E8FC27 919CE141 DAB47AF8" then click "Yes".
For more information, please see the following page (in Japanese).
個人認証用証明書CAのプライベート化による、証明書のインストール方法の変更点が知りたい
【mac OS】
- If a dialog box regarding trusting certificates appears, go to Details and confirm that the "Fingerprints SHA-1" is "D5 62 97 10 C1 7B D6 63 91 E8 FC 27 91 9C E1 41 DA B4 7A F8" and select "Always Trust".
- If the message "Certificate is not trusted" is displayed after importing the certificate, similarly, check the "Fingerprint SHA-1" under "View Information" in the root certificate. If it is correct, select "Always trust" for "When using this certificate" under "Trust".
Procedure for exporting certificates with Firefox
Choose the following sequence; "Privacy & Security" → "Certificates" → "View Certificates".