Objective
This article describes how to create a Certificate Signing Request (CSR) on NetScaler.
Background
Setting up PKI environment involves set of steps and generating a CSR file is key to it. Getting a public certificate to host your domain is a must before anyone can interact with you. CSR is generated based on your private key and public details which you want to include in the certificate. Certificate is always generated by a CA (certificate authority) while you never share your private key with the CA. The CSR file is shared with CA and it drives generation of certificate for the end domain.
Hence any web site that is to use SSL must generate a Certificate Signing Request (CSR), an electronic document that contains a public key and a company/domain name. The certificate must then be signed/attested by a digital signature from a certificate authority (CA). The signed/attested certificate returned by the CA contains the site’s public key and company/domain name along with the CA’s endorsement.
To generate a CSR (certificate signing request), RSA key need to be created first. To create RSA keys please refer “How do I setup RSA keys on NetScaler?â€. After the creation of RSA key, create CSR and submit it to a trusted CA (like DigiCert) to order for an SSL Certificate.
Instructions
Complete the following steps to create a CSR on NetScaler:
Step 1: Go to Traffic Management > SSL > Create Certificate Signing Request (CSR).
Step 2: Fill the Create Certificate Signing Request (CSR) form shown below.
Request File Name: Name for and, optionally, path to the certificate signing request (CSR). /nsconfig/ssl/ is the default path.
Key FileName: Name of and, optionally, path to the private key used to create the certificate signing request, which then becomes part of the certificate-key pair. The key must be present in the appliance's local storage. /nsconfig/ssl is the default path.
-
In the Browse drop-down list, select Appliance.
-
Browse, select the RSA file created and click open.
Fill the company information in the Distinguished Name Fields section.
Fill the attribute fields.
- Challenge Password: To use later during certificate installation.
Click Create to finish the creation of CSR. Created CSR need to be sent to CA for signing and the process for the same is mentioned in the below steps.
Step 3: Go to Traffic Management >SSL > Manage Certificates/keys/CSRs.
Step 4: Select the created certificate and click View.
Example:
Supporto Citrix
Traduzione automatica
Questo articolo ?? ¨ stato tradotto da un sistema di traduzione automatica e non ?? ¨ stata valutata da persone. Citrix fornisce traduzione automatica per aumentare l'accesso per supportare contenuti; tuttavia, articoli automaticamente tradotte possono possono contenere degli errori. Citrix non ?? ¨ responsabile di incongruenze, errori o danni derivanti dell'uso di articoli automaticamente tradotte.
Citrix技術支持
自動翻譯
這篇文章被翻譯由一個自動翻譯系統,並沒有受到人們的審查。 Citrix提供自動翻譯,增加獲得支持的內容;但是,自動翻譯的文章可能可以包含錯誤。思傑不負責不一致,錯誤或損壞因使用自動翻譯的文章的結果。
Поддержка Citrix
Tradução automática
Эта статья была переведена автоматической системой перевода и не был рассмотрен людьми. Citrix обеспечивает автоматический перевод с целью расширения доступа для поддержки контента; Однако, автоматически переведенные статьи могут может содержать ошибки. Citrix не несет ответственности за несоответствия, ошибки, или повреждения, возникшие в результате использования автоматически переведенных статей.
시트릭스 지원
자동 번역
이 문서 자동 번역 시스템에 의해 번역 된 사람들에 의해 검토되지 않았다. 시트릭스는 컨텐츠를 지원하기 위해 접근을 높이기 위해 자동 번역을 제공합니다; 그러나, 자동으로 번역 기사 오류를 포함 할 수있다. 시트릭스는 자동으로 번역 된 기사의 사용의 결과로 발생하는 불일치, 오류 또는 손해에 대해 책임을지지 않습니다.