Personal certificate requests settings


To create a new certificate request that can be extracted and sent to a certificate authority (CA).

To view this admin console page, click Security > SSL certificate and key management. Under Configuration settings, click Manage endpoint security configurations > {Inbound | Outbound} > ssl_configuration. Under Related items, click Key stores and certificates > key store . Under Additional Properties, click Personal certificates requests. Then click the New button.

Personal certificate requests are temporary place holders for certificates that will be signed by a certificate authority (CA). The private key is generated during the certificate request generation, but only the certificate is sent to the CA. The CA generates a new certificate, signed by the CA.

Any changes made to this panel are permanent.

File for certificate request

Fully qualified file name from which the certificate request is exported. This portion of the certificate request can be given to the certificate authority to generate the real certificate. After the real certificate is generated, we can perform a "Receive a certificate from a certificate authority" from the personal certificate collection view.

Data type: String

Key label

Alias that represents the personal certificate request in the key store.

Data type: String

Key size

Size of the keys that are generated.

Data type: Integer
Default: 1024

Common name

Name of the entity that the certificate represents. This common name can represent a person, company, or machine. For Web sites, the common name is frequently the DNS host name where the server resides.

Data type: String

Organization

Organization portion of the distinguished name.

Data type: String

Organizational unit

Organization unit portion of the distinguished name. This field is optional.

Data type: String

Locality

Locality portion of the distinguished name. This field is optional.

Data type: String

State or province

State portion of the distinguished name. This field is optional.

Data type: String

Zip code

Specifies the zip code portion of the distinguished name. This field is optional.

Data type: Integer

Country or region

Country portion of the distinguished name.

Data type: String

Refer to http://www.iso.org/iso/en/prods-services/iso3166ma/02iso-3166-code-lists/list-en1.html for a list of ISO 3166 country codes.





 

Related tasks


Create an SSL configuration

 

Related


Keystores and certificates collection
Personal certificate requests collection