Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Creating a Certificate Signing Request (CSR) in SafeSync for Enterprise (SSFE)

    • Updated:
    • 12 Apr 2016
    • Product/Version:
    • SafeSync for Enterprise 2.0
    • SafeSync for Enterprise 2.1
    • Platform:
    • Ubuntu 10.04 64-bit
Summary

Create a CSR in the SafeSync for Enterprise server that you can send to a public Certificate Authority (CA). This certificate can also be used to update the SSL certificate in the SafeSync management console.

Details
Public

The procedure uses the openssl tool that is installed by default in the SSFE server.

  1. Log in to the SSFE server shell (or SSH to SSFE server).
  2. Generate a private key using the command:

    # openssl genrsa -out www.domain.com.key 2048

    This will create a .key file in the directory where the command is executed. Keep this private key as you will use it when updating the SSL certificate on the SSFE Admin UI when the certificate is signed.

  3. Create the CSR using the command:

    # openssl req -new -key www.domain.com.key -out www.domain.com.csr

  4. Fill out the needed information for the CSR.
    DN FieldExplanationExample
    Common NameThe fully qualified domain name (FQDN) for your web server. This must be an exact match.If you intend to secure the URL https://www.yourdomain.com, then your CSR's common name must be www.yourdomain.com. If you plan on getting a wildcard certificate make sure to prefix your domain with an asterisk (*). For example: *.domain.com.
    OrganizationThe exact legal name of your organization. Do not abbreviate your organization name.domain.com
    Organization UnitYour department/section in the organization.IT
    City or LocalityThe city where your organization is legally located.Wellesley Hills
    State or ProvinceThe state or province where your organization is legally located. This field should not be abbreviated.Massachusetts
    CountryThe two-letter ISO abbreviation for your country.US

    Do not include extra attributes in the required fields. Leave the challenge password blank and just press ENTER key.

  5. Verify if the CSR is created using the command:

    # openssl req -noout -text -in www.domain.com.csr

    You should not receive any errors after executing the command.

  6. Send the .csr file to your CA.
 
You may need to convert the certificate the CA returns to you to PEM format first before you can use it to update the certificate through the SSFE Admin UI.
Premium
Internal
Rating:
Category:
Configure
Solution Id:
1099485
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.