ICS CUBE creates self-signed certificates, so the browser will report an untrusted connection. It is Okay!
If you purchased and want to use a trusted SSL certificate signed by a certification authority, then you need to convert it to a single * .pem file (bundle) containing the chain of received certificates: SSL_Certificate → Intermediate Certificate → Root Certificate.
Open a text editor and paste the entire body of each certificate into a single text file in the following order:
The result should look like this:
—–BEGIN CERTIFICATE—– #Your SSL Certificate (your_domain_name.crt)# —–END CERTIFICATE—– —–BEGIN CERTIFICATE—– #Intermediate Certificate (DigiCertCA.crt)# —–END CERTIFICATE—– —–BEGIN CERTIFICATE—– #Root Certificate (TrustedRoot.crt)# —–END CERTIFICATE—–
You can import the received file (as a certificate) to ICS CUBE via the web interface in the certificates section.
Only not encrypted private key is supported.