KSDA/K2000 How to generate a Self-Signed certificate for the appliance?
The KSDA/K2000 is capable to use a Self-Signed certificate. I will now provide a little step by step guide on how to enable it and then renew it.
Scenario #1: Your KSDA/K2000 appliance is not using a cert for the UI.
1. Go to UI > Settings > Security
2. Scroll down to "Optional SSL Settings" and click on "Enable SSL"
3. Click on "Get New SSL Certificate"
4. Fill the data accordingly and click on "Generate Certificate Request"
5. Scroll down and click on "Can I use a self-signed certificate instead?"
6. You will get an smaller notice with information about using a self-signed certificate, read it (optional), and click on "Save and Restart Apache". NOTE: This is only going to restart the Apache server, therefore the UI will not be accessible
7. The UI will change to "We are configuration the SDA"
After this you should be able to access the appliance by HTTPS, you can optionally disable port 80.
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Scenario #2: You have a Self-Signed Certificate that is about to expire and want to renew it
1. Go to UI > Settings > Security
2. Scroll down to "Optional SSL Settings" and click on "(change)"
3. Click on "get a new SSL certificate"
4. Click on "Generate Certificate request"
5. Scroll down and click on "Can I use a self-signed certificate instead?"
6. You will get an smaller notice with information about using a self-signed certificate, read it (optional), and click on "Save and Restart Apache". NOTE: This is only going to restart the Apache server, therefore the UI will not be accessible
Comments