Generate a permanent internal CA

SecureTransport uses digital certificates for many security functions. These certificates can either be self-issued, meaning they are issued by the SecureTransport Server or signed by a third party, such as an external company like Verisign or a corporate CA. During the installation process, SecureTransport installs a default self-issued CA.

This step regenerates the self-signed Internal CA with a new password and with Distinguished Name (DN) attributes specific to an organization. You can use the Internal CA to sign local certificates that you generate in Step 4.

Note When you log in to the Administration Tool using the admin account, you can access this page by selecting Setup > Certificates > Internal CA.
  1. Select Configure > 3-Generate CA.
  2. SecureTransport displays the Internal CA pane.
  3. Click Generate New CA.
  4. SecureTransport displays Generate Internal CA page.
  5. Enter the required information for the internal certificate.
  6. Internal certificates require the Certificate Subject information. For internal certificates, enter the following information:
    • Validity in days – the number of days the certificate is valid. The default is 365 days.
    • CA key password – the private key password used to unlock the certificate.
    • Confirm CA key password – the private key password must be entered again for confirmation.
    • Key Size – a number representing the size of the generated key, expressed in bits. Possible values are 1024, 2048 (default), 3072, or 4096 bits.
    • Signature Algorithm – the selection of the signature signing hashing algorithm. Possible values are SHA1withRSA, SHA256withRSA (default), SHA384withRSA, and SHA512withRSA.
    • Common Name – a description of the certificate. Do not use the host name or the fully qualified domain name (FQDN) of the server without additional identifying text.
    • Department – the organizational unit represented by the CA.
    • Company – the organization represented by the CA.
    • City – the name of the locality where the CA is located.
    • State – the name of the state or province where the CA is located.
    • Country – the name of the country where the CA is located.
  7. Click Generate.

Related Links