Manage Certificates
The Certificates page provides access to the Technical Support Appliance certificate management features.
SSL Server Certificate Status
Configuring TSA installs the default TSA certificate that is delivered with the Technical Support Appliance. The SSL Server Certificate Status section displays information about the SSL server certificate that is installed in TSA. The certificate information includes Issued by, Issued to, Issued on, Expires on, Serial number, and Signature algorithm.
Certificate Authority Signing Request
- Common Name: Enter the fully qualified host name (FQDN) of TSA. The minimum character limit is 1 and the maximum character limit is 64.
- Organization Unit: Specify the organization name, which differentiates between divisions within an organization. For example, 'Hardware Development' or 'Human Resources'.
- Organization: Specify the name of the corporation, limited partnership, university, or government agency.
- City: Specify the city or locality name where the organization that is owning the console operates.
- State: Specify the state or province name where the organization that is owning the console operates. If you are not sure of the state, type Unknown.
- Country: Select the country name where the organization that is owning the console operates.
- Number of days until expiration: Specify the number of days that the certificate is valid for, beginning from the time the certificate is created.
Click Generate and download Certificate Signing Request (CSR) file to create and download the CSR file with the specified information.
Upload and install custom certificate using signers (a certificate chain)
- .crt
- .der
- .pem
- Root Certificate file: Specify the location of the root certificate file that you want to install on the Technical Support Appliance.
- Intermediate Certificate file: Specify the location of the intermediate
certificate file that you want to install on the Technical Support Appliance.Note: There can be multiple (maximum of 3) intermediate certificate files based on the multiple signers that are imported.
- TSA Certificate file: Specify the location of the TSA Server Certificate file that you want to install on the Technical Support Appliance.
- Click Upload and install a Custom Certificate using Certificates chain to upload all the files (Root Certificate file, Intermediate certificate files, TSA certificate file) that you specified and install a custom certificate by using the chain of certificates.
Custom Certificate Install
You can create and install a self-signed SSL server certificate or upload and install a custom SSL server certificate.- Certificate password: Specify the password for the custom SSL server certificate.
- Confirm password: Enter the password again. The two passwords that you enter are compared to confirm that they match.
- Custom certificate file: Specify the location of the Java keystore file that contains the custom certificate that you want to install on the Technical Support Appliance.
Click Upload and install Complete JKS file to upload the Java keystore file that you specified and install a custom certificate. The Java keystore file must include the custom certificate and any relevant certificate authority root and intermediate certificates.
Installing the default certificate
To install back the default certificate, use Set Appliance certificate to default option that is specified in the TSA configuration file.
- Launch the TSA console.
- Select option 3) Set Appliance certificate to default from the TSA Config Menu.
- Confirm setting appliance certificate to default certificate [y|n]: Enter y to confirm setting the TSA certificate to the default certificate.