This article is used as a step in the main article Generate and Install an SSL Certificate.


These instructions are current as of the date of initial publication. Certificate authorities may change their policies and practices at any time without Embotics having any knowledge of the change. Some vendors may require additional steps such as creating additional keystores or modifying the server.xml file. When in doubt, please contact the support team for the issuing authority for further instructions. Symantec Support 1-877-438-8776. If you require Embotics to assist in the installation of a 3rd Party SSL Certificate a Professional Service fee may be applicable.


Before importing a signed certificate purchased from Symantec, you must first follow the procedure below to install their primary and secondary intermediate certificates.

  1. Save the intermediate certificates provided by Verisign to <INSTALL DIRECTORY>\Embotics\vCommander\jre\bin using the filenames primary_inter_ca.crt and secondary_inter_ca.crt.
  2. Issue the command keytool -import -trustcacerts -alias primary_inter_ca -file primary_inter_ca.crt -keystore “..\..\tomcat\conf\keystore” -storepass changeit.
  3. Issue the command keytool -import -trustcacerts -alias secondary_inter_ca -file secondary_inter_ca.crt -keystore “..\..\tomcat\conf\keystore” -storepass changeit.
  4. Proceed with installing the signed CA certificate provided by Verisign as described in Generate and Install an SSL Certificate.

If you have the full chain .p7b file you can simply run this command to import the CA cert into vCommander Keystore: 

keytool -import -alias tomcat -keystore “..\..\tomcat\conf\keystore” -trustcacerts -file your_file.p7b -storepass changeit


Download the Symantec certificates required by this article here.