SIGNA MR355 / SIGNA MR360
Service Manual
5856356-3EN Revision 5.0
Basic Service Documentation. Copyright General Electric Company.
Object ID: 00000018WIA301F8940GYZ
Topic ID: id_2015900 Version: 2.6
Date: Jan 8, 2021 11:18:44 AM

Configuring the SSL certificate (only for customers that use SSL configuration)

About this task

If the customer's site uses a proxy server that requires two-way SSL certificate-based authentication, install the SSL certificates on the scanner in the keystore. The GEHC IPM Project Manager will provide the information you need to complete this procedure. For details, see section Assemble prerequisites in the IPM Service Manual.

Note: If the proxy server requires username/password authentication or does not require any authentication, or if the customer site uses a Domain Name System (DNS) server, you do not need to perform this procedure.

Procedure

Close any applications running on the scanner.
In the scanner console, open a Command Prompt/C Shell as a root user.

Note: The Shell window can only be launched when the EA3 user is included in the authorized EA3 group. Users not in this EA3 group will not have access to launch the Shell window. If you are not logged in as the proper logon user, log out and then log back on as the correct EA3 user with the authorized permissions.
Navigate to the keystore folder:cd/usr/java/lib/security

Run the following commands by inserting the file information bellow into the command:

<cacertificate_location>: is the location on the scanner where the CA certificate has been downloaded.
<cacertificate_filename>: is the filename of the hospital CA certificate for the proxy server. The format of this filename can vary by certificate type.

Option	Description
To install the certificate	`keytool ‑importcert ‑trustcacerts ‑file <cacertificate_location>/<cacertificate_filename> ‑alias <cacertificate_filename> ‑keystore ./cacerts ‑storepass changeit`
To check whether certificates are installed	`keytool ‑list -keystore ./cacerts ‑storepass changeit`
To delete the certificate	`keytool ‑delete ‑alias <cacertificate_filename> ‑keystore ./cacerts ‑storepass changeit`

Reboot the scanner to effect the changes to the IPM application.

CAUTION

SSL file not in scanner save info

This SSL certificate information is not included with information saved/restored on this device. You must repeat this procedure after upgrading scanner software.