Safeguard for Privileged Passwords enables an Appliance Administrator to upload SSL certificates with private keys or enroll SSL certificates via a CSR.
Initially, the default self-signed SSL certificate used for HTTPS is listed and assigned to the appliance. This default certificate is not a trusted certificate and should be replaced.
Go to the following selection, based on your client:
- web client: Navigate to Certificates > SSL/TLS Certificates.
To display the following information for the SSL/TLS certificates, select a certificate.
Property | Description |
---|---|
Subject |
The name of the subject (such as user, program, computer, service, or other entity) assigned to the certificate when it was requested. |
Appliances |
Lists the name of the appliance to which the certificate is assigned. |
Issued By |
The name of the certificate authority (CA) that issued the certificate. |
Thumbprint |
A unique hash value that identifies the certificate. |
Alternate DNS Names |
Additional or alternate host names (such as, sites or common names) that were specified when the certificate was requested.. For more information, see Creating an audit log Certificate Signing Request.. |
Alternate IP Addresses |
Additional or alternate host names (such as, IP addresses or common names) that were specified when the certificate was requested. For more information, see Creating an audit log Certificate Signing Request. For the default self-signed SSL certificate, the name and IP address of the appliance is used. |
Invalid Before |
A start date and time that must be met before a certificate can be used. |
Expiration Date |
The date and time when the certificate expires and can no longer be used. |
Use these toolbar buttons to manage SSL certificates.
Option | Description |
---|---|
Add Certificate > Upload Certificate |
Upload an SSL certificate. For more information, see Installing an SSL/TLS certificate.. |
Add Certificate > Create Certificate Signing Request (CSR) |
Create a CSR to enroll a certificate. For more information, see Creating an SSL/TLS Certificate Signing Request.. |
Refresh |
Update the list of SSL certificates available (uploaded to Safeguard for Privileged Passwords). |
Assign Certificate to Appliance(s) |
Assign the selected certificate to one or more appliances. For more information, see Assigning an SSL/TLS certificate to appliances.. |
Unassign Certificate from Appliances |
Unassign the selected certificate from one or more appliances. |
Delete Selected |
Delete the selected certificate from Safeguard for Privileged Passwords. |