Hi Sean,
There are some issues with this particular feature on the portal as of now.
Please raise a TAC case and provide the following details. The certificate can be uploaded manually from the backend :
- Generate a private key (2048 bit RSA) and CSR
- Have the CSR signed (include the extensions mentioned below)
- Send the private key and signed certificate (PEM or DER encoded) to TAC, who will escalate it to DBA
- Also provide name and description for certificate that needs to be uploaded.
The certificate must include the following details:
- RSA private/public keypair length of 2048 bits
- SHA1 hashing should be used for signing purposes
- The following extensions are required in the signed certificate:
X509v3 extensions:
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints:
CA:TRUE
PLEASE ENSURE ALL OF THE ABOVE MENTIONED ARE PROVIDED TO THE CSE.