DCO8.3.2 SSL Certificate

aashraf · ‎2020-12-17

Dear Gents,

Based on this article

https://dcimsupport.ecostruxureit.com/hc/en-us/articles/360036928393-Changing-SSL-certificate-on-the...

The DCO SSL certificate needs to be an Apache 2.x/PEM format certificate consisting of two files (*.key, *.crt).

But the customer needs to extract a CSR to create a certificate for the DCO like we did in DCE,

Is this applicable in DCO or it should be Apache 2.x/PEM format certificate consisting of two files (*.key, *.crt) ?

And if this is applicable, how to extract this CSR from DCO? And how to upload the certificate without (*.key) file?

Thanks,

Ahmed Ashraf

gsterling · ‎2020-12-17

Hello Ahmed

I attached a pdf you can use as a reference to create a CSR from a DCO or ITA server (should work on either).

Regards

Greg Sterling

gsterling · ‎2020-12-22

Hello

Are you making a comment or asking a question as a follow-up to this post?

You are correct in regards to signed SSL certificates. They need to come from a trusted authority, usually a third party.

But the procedure attached to the below post or this help center page https://helpcenter.ecostruxureit.com/hc/en-us/articles/360016589697-How-to-manually-create-a-CSR-cer... should allow the user to fetch the current SSL key for their DCO/ITA server and create a certificate signing request.

When the CSR is signed either internally or by a trusted authority, then that signed certificate along with the original key created in the procedure should allow you to apply a signed certificate to your DCO/ITA server.

Regards

Greg Sterling