Managing certificate signing requests
Generate a certificate signing request (CSR) or import a CSR response.
About this task
-
Generate a CSR to establish more security and trust than using a self-signed certificate.
-
Import a CSR response to replace the self-signed certificate in a key pair.
Generating certificate signing requests
About this task
To generate a CSR:
Steps
-
Click Security and then go to Key Pairs → Key Pairs.
-
Click the Pencil icon, then click Generate CSR for the certificate that you want to generate a CSR for.
Result:
PingAccess generates a CSR file, and your browser downloads it.
-
Provide this file to a certificate authority (CA).
The CA signs the file and provides a CSR response that you can upload and use to replace the self-signed certificate. If the CA is well known, its certificates are installed by default in most browsers and the user is not prompted to trust an unknown certificate.
Next steps
When you receive the CSR response, follow the instructions in Importing certificate signing request responses.
Importing certificate signing request responses
Before you begin
Before you import the CSR response, import the signing CA certificate into PingAccess and add it to a Trusted Certificate Group.
About this task
To import a CSR response:
Steps
-
Click Security and then go to Key Pairs → Key Pairs.
-
Click the Pencil icon, and then click CSR Response for the key pair that the CSR applies to.
-
To select the CSR response file, in the CSR Response File section, click Choose File.
-
Optional: To choose one or more chain certificate files associated with this key pair, in the Chain Certificates section, click Choose Files.
-
Click Save.