[Index]
To access the latest documentation, go to Documentation and Resources at: https://voss.portalshape.com
This procedure creates a self-signed or third-party-signed system certificate to use when setting up Single Sign-On (SSO) on the web proxy node on VOSS Automate.
Note
Log in as system administrator.
Go to (default menus) Administration Tools > Certificate Management.
Click Add.
Fill out the fields on the Base tab:
Fill out the fields on the Certificate Information tab:
Field | Description |
---|---|
Common Name * | Enter the FQDN for your server. |
Country Code * | A two-digit country code |
State * | An appropriate country subdivision |
City * | Your city |
Organization * | Your organization |
Organization Unit * | Your organization subunit |
Click Save.
Note
If you created a self-signed certificate, you can exit this procedure. If you requested a third-party-signed certificate, continue with the next steps.
On the Certificate Management list view, click on the third-party-signed certificate you created.
Choose Action > Export Certificate Request.
Follow your organization's procedures to obtain the third-party signature for the certificate.
Click the certificate.
Choose Action > Upload Signed Certificate.
Browse to the signed certificate, then click OK.
Used to generate self-signed certificates or creating certificate requests to be signed by a third-party certificate authority.
Title | Description | Details | |||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Name * | A textual identifier for the certificate. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Description * | Documents the purpose of this certificate. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Generate Certificate Signing Request | If true, indicates that the system will generate a certificate signing request that can be signed by a third-party CA. If false, the system will generate a self-signed root certificate. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Generated On | The date and time when the certificate was generated. Ignored when "Generate Certificate Signing Request" is true. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Valid From | Time when the certificate starts to be valid. This is the number of seconds from when the certificate is generated. Ignored when "Generate Certificate Signing Request" is true. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Valid To | How long the certificate will be valid for from the time of generation. The value is in seconds. Default is 315360000 seconds (10 years). Ignored when "Generate Certificate Signing Request" is true. Default: 315360000 |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Expires | The expiry date of the certificate. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Serial Number | Serial number for the certificate. Default: 1 |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Key Length | Length of the key to be generated. Default: 1024 |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Hashing Algorithm | Hashing algorithm to use for the key. Default: sha256 |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Private Key File Reference | An internal reference for the generated private key file. This file will never be exposed to users, including administrators with the highest privileges. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Certificate File Reference | An internal reference to the certificate file that is generated internally or uploaded authorized users. This certificate is generated automatically when "Generate Certificate Signing Request" is false. The CA-signed certicate must be uploaded manually when "Generate Certificate Signing Request" is true. This file will never be exposed to users, including administrators with the highest privileges. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Certificate Request File Reference | An internal reference to the generated certificate signing request file, when "Generate Certificate Signing Request" is true. This file will never be exposed to users, including administrators with the highest privileges. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Certificate Information | Contains information about the certificate. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Common Name * | Must match the host being authenticated. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Country Code * | Two letter description of the country. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
State * | Name of the state. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
City * | Name of the city. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Organization * | For example, a company name. |
|
|||||||||||||||||||||||||||||||||||||||||||||||
Organization Unit * | A unit at the organization. For example, a department of a company. |
|