The Key Store in Workbench, and in the JACE and Supervisor stations contains one or more server certificates, each with its pair of private and public cryptographic keys. The default server certificate (tridium) has the same name in each key store, however, its keys are unique for each instance.
If there are no certificates in the Key Store when starting the Workbench application or a Niagara station (JACE or Supervisor),
a default self-signed certificate is created. Clicking the 
or 
buttons also adds certificates to the Key Store.
Double-clicking the certificate row in the table allows you to view certificate details.
Once created, you cannot edit a certificate. To correct an error you must delete the certificate and start again. This is
important for security.
displays certificate details for the selected certificate.
opens the Generate Self Signed Certificate dialog, which is used to create CA and server certificates.
opens a Certificate Request dialog, which is used to create a Certificate Signing Request (CSR).
removes the certificate from the Key Store. If you delete a certificate that is currently configured and in use, you could lose a connection.
adds the certificate (.pem file) to the Key Store if the certificate is not already in the Key Store. Otherwise, importing updates the existing certificate. For example, importing
is used to update an existing certificate with a signature.
saves a copy of the selected certificate to the hard disk. The file extension is .pem.
deletes all keys in the Key Store and creates a new default key pair and certificate. It does not matter which certificate is selected when you click Reset. Reset does not reboot the JACE.
Do not reset without considering the consequences. The Reset button facilitates creating a new key pair (private and public
keys) for the entity, but may disable connections if valid certificates are already in use. Export all certificates before
you reset.