Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
258
Views
0
Helpful
0
Replies

SSM On-Prem: Using CLI to create CSR and import TLS Cert for Browser

Chris S-C
Level 1
Level 1

‎05-31-2024 02:16 AM - edited ‎05-31-2024 02:51 AM

I'm currently standing up a Cisco SSM On-Prem but have hit a bit of an issue regarding creating and adding a browser TLS certificate.  Our (private) Certificate Authority have very strict rules on what can and can't be in the CSR, unfortunately the SSM On-Prem GUI CSR creation screen does not fit in with their world view so I cannot create a CSR via that route!

I have been digging around on the CLI and know that OpenSSL is installed and that the front-end runs in a Docker container.  Is anyone aware of any "gotcha's" for using the CLI to create a new Private Key and CSR then importing the new .PEM certificate?

I have tried once but the docker container would not restart, looking at the logs it seemed to not like the Private Key.  My current assumption is that the user.pem and user.key files in /home/deployer/ssl are the correct cert/key combo - this is mapped to /etc/nginx/ssl in the frontend Docker container.

Any helpful hints would be appreciated.

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card