Create a certificate for the Log Server using external certificate management
Create a certificate request for the Log Server, export and sign the certificate request using the external CA, then import the signed certificate for the Log Server.
For more details about the product and how to configure features, click Help or press F1.
Steps
Example
Option | Definition |
---|---|
Current Certificate | Shows information about the current certificate of the server. Click Export Certificate to export the current certificate. Click Renew Certificate to renew the certificate. |
Check Revocation | Checks against certificate revocation lists (CRLs) whether the certificate has been revoked. The certificate must be signed by a valid certificate authority. |
Ignore Revocation Check Failures if There Are Connectivity Problems | When selected, the server ignores all certificate check failures if connectivity problems are detected. |
Organization (O) (Optional) |
The name of your organization as it appears in the certificate. |
Organization Unit (OU)
(Optional) |
The name of your department or division as it appears in the certificate. |
State/Province (ST)
(Optional) |
The name of state or province as it appears in the certificate. |
Locality (L)
(Optional) |
The name of the city as it appears in the certificate. |
Common Name (CN) | A common name that includes the name of the Log Server element. |
Public Key Algorithm (Not editable) |
The algorithm used for the public key. Note: For NGFW Engine certificates, only the ECDSA public key algorithm is
supported.
|
Key Length | The length of the key in bits. Enter 521 or 384. |
Signature Algorithm (Not editable) |
Shows the signature algorithm according to the key length. |
Subject Alternative Name (DNS) | Name of the Log Server as a fully qualified domain name (FQDN). |
Certificate Request | Shows the certificate request as text. |
Export Certificate Request | Exports the certificate request so that you can sign it using an external certificate authority. |
Import Signed Certificate | Imports a certificate that has been signed using an external certificate authority. |