SSL Certificates
The Configure-SSL Certificates tab contains four sub-pages. They are organised below.
What can edgeNEXUS do with SSL?
jetNEXUS ALB-X has the ability to offload the SSL encryption and decryption work load from your backend servers and also becomes the termination point for your SSL certificates. jetNEXUS ALB-X also has the ability to re-encrypt traffic to the back-end content servers for more secure environments.
Create Certificate
To create a local certificate:
- Fill in all the details like the example below.
- On the right hand side you will see a button to click called:
- Once you have clicked this you can apply the certificate to a channel here.
To create a Certificate Request:
- Fill in all the details like the example below except for the Period
- On the right hand side you will see a button to click called:
Manage Certificates
Renew a certificate:
This will allow you to obtain a new CSR.
- Select a certificate from the drop-down list.
- Click
on the right hand-side. - This will provide a new certificate request as above
Show the details of a certificate:
This will enable you to view the details of the certificate selected:
- Select a certificate from the drop-down list.
- Click
on the right-hand side. - A pop-up will provide the details of the certificate like the example below.
Delete a certificate:
This will allow you to delete the selected certificate from the ALB-X.
- Select a certificate from the drop-down list.
- Click
on the right hand side. - The certificate is no longer installed on the jetNEXUS ALB-X.
Install a certificate:
This will allow you to install a certificate from a CSR:
- Select a certificate from the drop-down list that has (pending) tagged on the end
- Paste your signed certificate that you received back from the Certificate Authority at the top
- You may also paste in the Intermediates below this taking care to follow the correct order:
- 1.(TOP)———————————-Your Signed Certificate
- 2.(2nd From Top)———————Intermediate 1
- 3.(3rd from Top)———————–Intermediate 2
- 4.(Bottom)——————————-Intermediate 3
- 5.Root Certificate Authority———No need to add this as they exist on the client machines. (ALB-X also contains a root bundle for re-encryption where it acts as a client to a real server)
- Click
on the right hand side. - Once you have installed you should see (Trusted) next to your certificate
- If you have made a mistake or entered the wrong intermediate order then simply select the Certificate(Trusted) and add the certificates (including the signed certificate) again in the correct order and click Install
Import Certificate
This section allows you to import a signed certificate from a trusted Certificate Authority (CA). The signed certificate must be in PKCS#12 format. This container format can contain multiple embedded objects, such as multiple certificates and is usually protected with a password.
To import your certificate:
- Give your certificate a name.
- Type the password you used to create the PKC#12 container.
- Browse for the certifixcate.pfx
- Click Upload.
- Your certificate will now be in the SSL drop down box for your channel.
Export Certificate
This section allows you to export any certificates that are installed on the jetNEXUS ALB-X. The certificate will be exported in PKCS#12 container format which will include the private key and intermediate certificates.
- Give your certificate a name.
- Type a password to protect your WebCert.pfx file.
- Click Export on the right hand side.
- Save the file so that it may be import on your web server or another jetNEXUS ALB-X.
