Create a certificate request
To create a certificate request, you must create a TLS Credentials element.
Note: TLS Credentials elements represent both certificate requests and signed certificates in the Management Client. In the Configuration view, the State
column for the TLS Credentials element shows whether the element represents a certificate request or a signed certificate.
For more details about the product and how to configure features, click Help or press F1.
Steps
- Select Configuration, then browse to Administration.
- Browse to .
- Right-click TLS Credentials, then select New TLS Credentials.
-
Complete the certificate request details.
- Enter a name for the certificate.
- In the Common Name field, enter the IP address or domain name of the server.
- Complete the remaining fields as needed.
- Click Next.
-
Sign the certificate request or finish creating the certificate request.
- To create a self-signed certificate, select Self-Sign, then click Finish.
- To create a certificate signed by the Management Server's internal certificate authority, select Sign with Internal CA, then click Finish.
- To sign the certificate request with an external certificate authority select Sign with External CA, then click Finish.
Next steps
If you want to sign the certificate request with an external certificate authority, export the certificate request.
Certificate Request Properties dialog box
Use this dialog box to create a certificate request in two steps. You can first create the certificate request and then optionally self-sign the certificate request.
Option | Definition |
---|---|
Step 1 Generate a Certificate Request | |
Name | The name of the element. |
Organization (O)
(Optional) |
The name of your organization as it appears in the certificate. |
Organization Unit (OU)
(Optional) |
The name of your department or division as it appears in the certificate. |
Country (C)
(Optional) |
Standard two-character country code for the country of your organization. |
State/Province (ST)
(Optional) |
The name of state or province as it appears in the certificate. |
Locality (L)
(Optional) |
The name of the city as it appears in the certificate. |
Common Name (CN) | The value for the Common Name field in the certificate request. For server certificates, the value is typically the fully qualified domain name (FQDN). |
Subject Alternative Name | The subject alternative name for the identity to be certified. Click Edit to add a subject alternative name. |
Public Key Algorithm | Select the public key algorithm for the certificate:
|
Key Length | Shows the length of the key in bits. |
Next | Click Next to continue to step 2 in creating a certificate request. |
Step 2 Sign Certificate Request | |
Self-Sign | Signs the certificate request with its own private key. |
Sign with Internal CA | Signs the certificate with the Management Server's internal certificate authority. |
Finish | Creates the certificate request. If you selected Self-Sign or Sign with Internal CA, the certificate requested is also signed. |