You can now import
SSL resources, such as certificates, private keys , CRLs, and DH keys, from
remote hosts even if FTP access to these hosts is not available. This is
especially helpful in environments where shell access to the remote host is
restricted. Default folders are created in /nsconfig/ssl as follows:
- For certificate files:
- For private keys: the
- For CRLs:
- For DH keys:
Imports from both
HTTP and HTTPS servers are supported. However, the import fails if the file is
on an HTTPS server that requires client certificate authentication for access.
Note: The import
command is not stored in the configuration (ns.conf) file, because reimporting
the file after a restart might cause an error.