Create TLS credentials from a certificate request

If you do not have an existing private key and certificate, create a certificate request and self-sign it to create a TLS Credentials element.

  For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration, then browse to Administration.
  2. Select Certificates > TLS Credentials.
  3. Right-click TLS Credentials and select New TLS Credentials.
  4. Complete the certificate request details.
    1. Enter a name for the certificate.
    2. In the Common Name field, enter the IP address or domain name of the server.
    3. Complete the remaining fields as needed.
    4. Click Next.
  5. Select Self Sign.
  6. Click OK.

Result

The TLS Credentials element is added to Administration > Certificates > TLS Credentials. The State column shows that the certificate has been signed.

Certificate Request Properties dialog box

Use this dialog box to create a certificate request in two steps. You can first create the certificate request and then optionally self-sign the certificate request.

Option Definition
Step 1 Generate a Certificate Request
Name The name of the element.
Organization (O)

(Optional)

The name of your organization as it appears in the certificate.
Organization Unit (OU)

(Optional)

The name of your department or division as it appears in the certificate.
Country (C)

(Optional)

Standard two-character country code for the country of your organization.
State/Province (ST)

(Optional)

The name of state or province as it appears in the certificate.
Locality (L)

(Optional)

The name of the city as it appears in the certificate.
Common Name (CN) The value for the Common Name field in the certificate request. For server certificates, the value is typically the fully qualified domain name (FQDN).
Subject Alternative Name The subject alternative name for the identity to be certified. Click Edit to add a subject alternative name.
Public Key Algorithm Select the public key algorithm for the certificate:
  • DSA
  • RSA
  • ECDSA
Key Length Shows the length of the key in bits.
Next Click Next to continue to step 2 in creating a certificate request.
Step 2 Sign Certificate Request
Self-Sign Signs the certificate request with its own private key.
Sign with Internal CA Signs the certificate with the Management Server's internal certificate authority.
Finish Creates the certificate request. If you selected Self-Sign or Sign with Internal CA, the certificate requested is also signed.