When you test with EAP-TLS or with IPSec using RSA signature authentication, private key, X.509 certificate, and root certificate files on the test server provide credentials used during authentication. When referring to these files as a group, the term Certificate files will be used.
Each test server hosts a Certificate Authority (CA) with a root certificate that you can use to generate the necessary keys and certificates using OpenSSL "C" libraries. Command line tools are provided to generate key and certificate files in a PEM format. You can convert them to DER or PKCS#12 (browser default) format if necessary. You can replace the root certificate provided with the test system with a certificate of your choosing and use it to generate the private key and X.509 certificate files. The root certificate is located in /home/cfguser/sseworks and must be named cacert.pem.
With the Test Server Administration window, you can distribute the Certificate files among your test servers or import files generated by your CA.