Replacing an expired root certificate

Before a network device can access the NES Administrator Consoleand the Nymi Band Application, a valid root CA certificate must exist in the Trusted Root Certification Authorities store.

1. In Control Panel, select Manage Computer Certificates.
2. In the certlm window, right-click Trusted Root Certification Authorities, and then select All Tasks > Import.
   The following figure shows the certlm window.

   Figure 1. certlm application
3. On the Welcome to the Certificate Import Wizard screen, click Next.
   The following figure shows the Welcome to the Certificate Import Wizard screen.

   Figure 2. Welcome to the Certificate Import Wizard screen
4. On the File to Import screen, click Browse, navigate to the folder that contains the certificate file, select the file, and then click Open.
5. On the File to Import screen, click Next.
   The following figure shows the File to Import screen.

   Figure 3. File to Import screen
6. On the Certificate Store screen, accept the default value Place all certificates in the following store with the value Trusted Root Certification Authorities, and then click Next.
7. On the Completing the Certificate Import Wizard screen, click Finish.
8. From the Windows Start Menu, type Manage Computer, and then select Manage Computer Certificates.
   The certlm window appears.
9. Navigate to Personal > Certificates folder.
   A list of certificates displays.
10. On the User Account Control dialog, click Yes.
11. Select the Security tab and then click the Add button.
12. In the new window, click Add, which opens the Select Users, Computers, Service Accounts, or Groups window.
13. In the Permissions area, under Allow column, select the Read permission.
    Figure 4. Setting Private Key Permissions
14. Click OK.