Specifications
Chapter 11: Web Logins
11-24
The CSR generated page appears as shown in Figure 11-14.
To delete a CSR and start over, click Delete CSR of the left side of the page.
Save a copy of
the private key
4. When you generate the CSR, a private key is also created on the BSC. When a
browser and the BSC negotiate an SSL connection, the BSC uses this key. The SSL
connection cannot function without it. Therefore, you should save a copy of the
private key on your computer, so that you can recover it later if necessary. To save the
private key, click Download Key at the bottom of the page.
Copy CSR to
provider’s web
site
5. In the scroll box containing the CSR text, highlight the entire text of the CSR and then
copy and paste it into the appropriate space on your certificate provider's CSR web
request form. Complete any remaining steps required by the certificate provider to
request the certificate.
Upload returned
certificate to
BSC
When the CA returns a file with the signed certificate, upload the file to the BSC:
1. Click the Web Logins tab in the administrator console, and then click the SSL
Certificate tab.
The SSL Certificate Generation page appears.
2. Click Browse, locate the downloaded certificate file on your computer, and then click
Upload Cert to upload it to the BSC and enable it as the login page certificate. The
page redisplays as shown in Figure 11-15.
3. If you also have an optional chain certificate, upload it when prompted. (Some CAs
use a “chain” of certificates, rather than just one root certificate.)
4. 4.Many providers issue certificates that certify the host name of the Web server,
rather than an IP address. If your certificate is host-name-based, you must ensure that:
•The Redirect to hostname checkbox is checked on the HTTP settings page. For
more information on configuring HTTP options, see “HTTP Server Settings” on
page 10-2.
• The host name is registered in your organization's DNS table.
Figure 11-14: SSL CSR Generated Page