Hi all: Regarding issues I am having with setting up authentication on a satellite server, I may need to import an "external certificate".

The documentation states:
If you are using an external certificate, you must complete the following tasks on the Satellite before configuring the Authentication role on a Satellite:
Ensure that the Satellite has an individual server certificate and the private key....
Import the external certificate by using the zac import-authentication-cert (iac) command....
I guess I am not clear on what number 2 is saying. We have our own CA (edirectory/security container). Are they asking for the public key from the eDirectory CA? Or does this only apply to situations where an ACTUAL external CA (say like Verisign) is used?
Thanks for the help, Chris.