you could follow this documentation:
Please, ignore all instructions regarding Fedora 1.0.4.
Basically, delete old cert, import new one and replace the certificate nick in
nsSSLPersonalitySSL attribute of "dn: cn=RSA,cn=encryption,cn=config" entry.
PS: Rergarding certutil usage:
----- Original Message -----
From: "Isabella Ghiurea"
Sent: Thursday, October 9, 2014 10:12:34 PM
Subject: [389-users] how to install a server cert the DS is down
need to know how to replace an existing server cert , I have the new one
signed by CA and need to know how to installed , I just copy in
/etc/pki/tls/certs ( 389admin UI not working)
Is this sufficient?
389 users mailing list