A Synergis™ Cloud Link comes with an X.509 certificate that
was generated during production. Replace the default certificate to enhance security by
generating a new self-signed certificate.
Procedure
-
Log on to the Synergis Cloud Link unit.
-
Click .
-
In the Certificate
management section, complete the identification fields.
NOTE: The Common
name, Subject alternative name, and
Country fields are mandatory.
-
From the Certificate type list, select one of the
following algorithms and key lengths:
- ECDSA 256 bits
- ECDSA 384 bits
- RSA 2048 bits
- RSA 3072 bits
- RSA 4096 bits
-
Click
Generate new self-signed certificate, and then
restart your browser and log back on to the unit.
The certificate is now generated on the unit.
-
Install the certificate in the browser's certificate store.
-
Click .
-
In the Current certificate section, click
Download.
-
In Windows, follow the instructions in the Certificate Import
Wizard to import the certificate to the Trusted Root
Certification Authorities folder using the Local
Machine option.
Install the certificate on all machines that connect to the updated
Synergis Cloud Link unit.
NOTE: The certificate
file will be labeled with the hostname and a
.cer suffix.
-
Restart your browser and log back on to the unit.
Results
Your
unit no longer shows a security error in the address bar when connecting using
hostname.
After you finish
If
the unit was already enrolled in Security Center, the Access Manager will not
trust the new certificate or connect to the unit, and you must reset the trusted
certificate in Config Tool.For more information, see Resetting the trusted certificate.