To install a syslog client certificate, the certificate must have at least the following:
-
Enhanced Key Usage extension with the Client Authentication (1.3.6.1.5.5.7.3.2) OID value.
-
Key Usage extension with the Digital Signature bit set.
To install a syslog client certificate
- Go to the following:
- web client: Navigate to Certificates > Syslog Client Certificate.
- Click Add Certificate and select one of the following:
- Install Certificate with a Private Key: To upload a PFX file that contains the certificate and the private key
- Install Certificate generate from CSR: To generate a CSR and have that signed by a trusted CA
- Browse to select the certificate file and complete the install.
- For Enter the private key passphrase:
- Enter the passphrase to import the certificate then click OK. Click to see the passphrase.
- If there is no passphrase, leave the field blank then click OK.
-
The Subject, Thumbprint, and Expiration date for the key you uploaded displays. You can select Use Default and respond to the confirmation dialog to return to the default, if desired.
- If you uploaded a certificate with a private key, you may upload the certificate's root CA to the list of trusted certificates. For more information, see Trusted CA Certificates.