Configuring certificates in IEE

Itron Enterprise Edition (IEE) Meter Data Management (MDM) requires three certificates to be configured:

  • Two types of certificates that were used while installing Action Manager:

    • Data Encipherment Certificate – used to encrypt passwords and client Secret

    • Client and Server Authentication Certificate – client is used to enable access to Service fabric cluster and the server is used for node-to-node communications.

  • The Server Authentication certificate that was used in Itron Identity Server, to authenticate the client in order to generate tokens

These certificates need to be imported into the server prior to the following configuration procedure.

  1. In IEE, go to System Administration > Code Table Setup > Certificate Table.

  2. Click New .

  3. Enter a description for the certificate, such as DataEncipherment.

  4. From the Store Location dropdown menu, select Local machine.

  5. From the Store Name dropdown menu, select Personal.

  6. In the Certificate Subject field, click Pick Certificate.

  7. In the Pick Certificate dialog that appears, select the Data Encipherment Certificate used in your Action Manager installation, and click OK. The Certificate Subject field automatically populates.

  8. From the X-509 Find Type dropdown menu, any option can be selected.

  9. In the Find Value field, the thumbprint value from the certificate should be automatically populated.

  10. From the Certificate Purpose dropdown menu, select Client Authentication.

  11. From the Server dropdown menu, select the IEE server name.

  12. Leave the Link to User field blank.

    The Link to User field.

  13. Click Save ().

  14. Click New ().

  15. Enter a description for the certificate, such as ServerClient_Auth.

  16. Repeat steps 2 through 6.

  17. In the Pick Certificate dialog that appears, select the Client and Server Authentication Certificate used in your Action Manager installation, and click OK. The Certificate Subject field automatically populates.

  18. Repeat steps 8 through 13.

    The Certificate Subject field automatically populating.

  19. Click New ().

  20. Enter a description for the certificate, such as IdentityServer_Auth.

  21. Repeat steps 2 through 6.

  22. In the Pick Certificate dialog that appears, select the Identity Server Authentication Certificate used in your Action Manager installation, and click OK. The Certificate Subject field automatically populates.

  23. Repeat steps 8 through 13.