Concepts
Generate CA Certificate CSR file
Suggest changes
-
PDF of this doc site
-
Protect Microsoft SQL Server databases
-
Protect SAP HANA databases
-
Collection of separate PDF docs
Creating your file...
You can generate a Certificate Signing Request (CSR) and import the certificate that can be obtained from a Certificate Authority (CA) using the generated CSR. The certificate will have a private key associated with it.
CSR is a block of encoded text that is given to an authorized certificate vendor to procure the signed CA certificate.
|
CA Certificate RSA key length should be minimum 3072 bits. |
For information to generate a CSR, see How to generate CA Certificate CSR file.
|
|
If you own the CA certificate for your domain (*.domain.company.com) or your system (machine1.domain.company.com), you can skip generating the CA Certificate CSR file. You can deploy the existing CA certificate with SnapCenter. |
For cluster configurations, the cluster name (virtual cluster FQDN), and the respective host names should be mentioned in the CA certificate. The certificate can be updated by filling the Subject Alternative Name (SAN) field before procuring the certificate. For a wild card certificate (*.domain.company.com), the certificate will contain all the hostnames of the domain implicitly.