This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

RSA® Authentication Manager Documentation

Browse the official RSA Authentication Manager documentation for helpful tutorials, step-by-step instructions, and other valuable resources.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Versions
Collections
All Downloads

Table of Contents

Product Resources

Generate a Certificate Signing Request (CSR) for the Web Tier

Replacing the default RSA virtual host certificate is optional.

Replacing the default RSA virtual host certificate is optional. You might need to replace this certificate for the following reasons:

  • Your network policy requires you to use certificates issued by a trusted root certificate authority (CA).

  • Your current certificate issued by a trusted root CA is expired.

  • You want to replace the default RSA certificate because your browser warns you that the default certificate is not trusted.

Before you can send a certificate signing request to a CA, you must generate the certificate signing request file in Authentication Manager. Authentication Manager generates the private key and certificate signing request.

Before you begin 

  • You must be an Operations Console Administrator.

  • The virtual host must be defined.

Procedure 

  1. In the Operations Console, go to Deployment Configuration > Certificates > Virtual Host Certificate Management, and click Generate CSR.

  2. On the Generate Virtual Host Certificate Signing Request page, do the following:

    1. Confirm the Virtual Host name.

    2. Enter an Alias.

    3. (Optional) Enter a Country name

    4. (Optional) Enter a State or Province name.

    5. (Optional) Enter a City or Locality name.

    6. (Optional) Enter an Organization name.

    7. (Optional) Enter an Organizational Unit name.

    8. (Optional) Enter an E-mail Address.

    9. (Optional) Enter the Subject Alternate Name. The Subject Alternate Name (SAN) allows you to protect multiple fully qualified domain names (FQDNs) with a single certificate. You can enter one or more FQDNs as comma-separated values, for example, authservices.corp.com,authexample.com. The default value is the FQDN used by the Authentication Manager administrative consoles.

    10. (Optional) Select a Key Size from the drop-down list, for example, 4096. The default encryption key size is 2048.

  3. Click Generate File.

  4. On the Download File page, click Download.

  5. Save the certificate request file to your local machine.

After you finish 

  • Send the certificate request file to the CA for signing and save the signed certificate request file on your local machine.

  • Import the trusted root and signed certificates to the virtual host and activate them. See Import a Signed Virtual Host Certificate.

 

 

 

 

 

You are here
Table of Contents > Certificates > Generate a Certificate Signing Request for the Web Tier
Labels (2)
0 Likes
Was this article helpful? Yes No
No ratings
© 2023 RSA Security LLC or its affiliates. All rights reserved.