Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 2564 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SAN Zertifikat

Krusty

Hallo zusammen,

ich habe folgende Frage:

Wie importiere ich ein SAN Zertifikat?

Mir ist klar, wie ich generell Zertifikate importiere, aber jeweils nur für einen A-Record bzw. DNS Namen.

Bei diesem SAN Zertifikat habe ich allerdings 5 Records.

Wie importiere ich das Zertifikat und kann alle 5 Records separat benutzen? (Für Reverse Proxy, etc.)

Das Gerät ist eine SG 210 mit aktueller Firmware.

 

Danke im voraus.



This thread was automatically locked due to age.
Parents
  • 0

    I have used certificates with multiple SANs.   Nothing is different.

    Since UTM does not have a mechanism for creating Certificate Signing Requests (CSRs), I request and accept the certificate using a Windows Server or PC.  Then I export the certificate with the private key and certificate chain included, then import it into UTM.

    For WAF sites, this is the obvious way to do things, because you need the certificate with private key on both the real webserver and the virtual webserver.

    When configuring a WAF Real Webserver, after you pick the certificate, you will be given the option to pick which name to use for the connection from UTM to Real Webserver.

    I don't think there are any other situations where UTM needs to pick a name from a list of SANs on a a UTM-installed certificate. 

Reply
  • 0

    I have used certificates with multiple SANs.   Nothing is different.

    Since UTM does not have a mechanism for creating Certificate Signing Requests (CSRs), I request and accept the certificate using a Windows Server or PC.  Then I export the certificate with the private key and certificate chain included, then import it into UTM.

    For WAF sites, this is the obvious way to do things, because you need the certificate with private key on both the real webserver and the virtual webserver.

    When configuring a WAF Real Webserver, after you pick the certificate, you will be given the option to pick which name to use for the connection from UTM to Real Webserver.

    I don't think there are any other situations where UTM needs to pick a name from a list of SANs on a a UTM-installed certificate. 

Children