There are two options how to achieve this - binding it to CSR request or do it manually via .pem format.
I. Binding it to CSR request
A. Go to System > Certificates > Server Certificates > add/create.
B. Select "Request Authority Certificate."
C. Fill in the information then go to the next screen.
1. Under the CSR tab, export the CSR and save it.
2. Under the Export tab, export the Private Key and save it.
3. Click Cancel to close the screen.
4. Send the CSR to the vendor and obtain the signed cert.
Certification Authority sends you signed certificate chains.
1. Double-click to CSR request on System > Certificates > Server Certificates tab
2. Bind the signed certificate and CA certificate which you receive from Sing Authority - if it is a certificate for the primary domain set it as "Default certificate."
3. Restart All Service modules and check the Error log for any records
II. Manually via .pem format
1. Go to System > Certificates > Server Certificates > Select "CRS" you've created
2. Under the Export tab, export the *private key and save it.
*NOTE: IceWarp encrypts the private key, copying it directly from the filesystem will result in a failed import.
3. Use notepad to copy the Private Key, signed cert, and any intermediate certs to a single cert.pem file. See the example at the end of this article.
4. Go to System > Certificates > Server Certificates > add/create
5. Select "Add Existing Certificate"
6. Import the cert.pem file from the single cert.pem you created in step 3
5. Back on the Server Certificates screen, select the newly imported cert and set it as the default
6. Restart the services.
7. Check the IceWarp error log for SSL errors.
Example of the single cert.pem