Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
743
Views
5
Helpful
2
Replies

OpenSSL for csr on Expressway x12.7

brown2wa
Level 1
Level 1

‎09-10-2021 07:03 AM

My predecessor used OpenSSL to create the key and signing request for the expressway edge. I'm trying to find out what the benefit is to doing this?

Also, we are using GoDaddy for our public certificate. Is there a way to simply renew the existing certificate on GoDaddy so that we can just install the renewed certificate and then check the box to use the existing key?

 

 

 

Labels:
0 Helpful
2 Replies 2

Jaime Valencia
Cisco Employee
Cisco Employee

‎09-10-2021 08:45 AM

I can't think of any benefit of using openssl, it's just another option that is available if you happen to like generating your own CSR and private keys. As opposed to using the wizard on expressway that would take a lot of the configuration and pre-populate the fields, but you can do pretty much the same with openssl if you know exactly what values you need to use.

 

As to your second question, you should be asking that to GoDaddy directly, they're the ones that can tell you how their renewal process is, and if they need a new CSR, or can do without it.

HTH

java

if this helps, please rate
0 Helpful

brown2wa
Level 1
Level 1
In response to Jaime Valencia

‎09-10-2021 09:59 AM - edited ‎09-10-2021 09:59 AM

Thanks, Jaime. After continued thought, I realized he likely did this to keep the key private and not hosted on the Expressway E in case a vulnerability arises.

 

I was hoping somebody with GoDaddy experience had an answer, because I have to go through a different team who supports our public certs and want to make sure I get reliable info.

Customers Also Viewed These Support Documents