000035631 - How to Generate SSL Certificate Request and Private Key from the RSA SecurID Access Admin Console

Document created by RSA Customer Support Employee on Oct 14, 2017
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035631
Applies ToRSA Product Set:  SecurID Access
IssuePart of configuring the SecurID Access application portal is loading a SSL certificate and private key as described in Configure Company Information and Certificates.  Generating the required private key and certificate signing request (CSR) can be accomplished through various means including the openssl toolkit and 3rd Party Certificate Authority utilities.
There is currently no obvious way to generate the private key and CSR from the Administration Console.
ResolutionTo generate a new private key and CSR from the Administration Console:
  1. Navigate to Applications->Application Catalog and click Add for any SAML application.  Note that you are not actually adding a new application and will cancel this process once you have generated the new certificate-related data.
  2. Go to the Connection Profile tab and scroll down and click the Generate Cert Bundle button.
  3. Enter a valid Common Name for your portal (for example: *.sso.mycompany.com) and then click Generate and Download.
  4. Click Close and then Cancel.
  5. Unzip the downloaded certificateBundle.zip and will see that it includes private.key and certsign.req files.
  6. Provide the certsign.req (CSR) file to your Certificate Authority of choice to obtain to obtain your SSL certificate.