Skip to content

SSL Certificate Request

1. Create request key

  • 1.1 General private key, and create request (CSR) key
mkdir ~/ssl_key && cd ~/ssl_key
openssl genrsa  -out  ~/ssl_key/tls.key 2048
openssl req -new -key ~/ssl_key/tls.key -out ~/ssl_key/tls.csr

Example -> Domain Name(FQDN): wzs-pvecenter.wistron.com

image-20251024125953332

2. SSL cert request

  • 2.1 Open wistron ADCA WebSite, and click Request a certificate

image-20251024130613578

  • 2.2 Click Submit a certificate request by using a base-64-encoded CMC or PKCS #10 file, or submit a renewal request by using a base-64-encoded PKCS #7 file.

image-20251024130751457

  • 2.3 View and copy server .csr file content
cat tls.csr

image-20251024130956242

  • 2.4 Paste server .csr content to Saved Request, select Certificate Template with Wistron Client and Server Authentication, then input Additional Attributes with san:dns=wzs-pvecenter.wistron.com, then click Submit >

wzs-pvecenter.wistron.com -> please change to the actual name

image-20251024131415400

  • 2.5 Download certificate, save to certificate name with domain name(FQDN)

image-20251024132345407

3. Download CA cert

  • 3.1 Open wistron ADCA WebSite, and click Download a CA certificate, certificate chain, or CRL

image-20251024133240296

  • 3.2 Select Base 64 and click Download CA certificate

Save to CA certificate name with cacerts

image-20251024133552732

4. Upload certificate

  • 4.1 Upload SSL and Wistron CA certificate to server folder ~/ssl_key/

image-20251024134950953