Versions Compared

Old Version 1

changes.mady.by.user Christina Loher (Deactivated)

Saved on

compared with

New Version 2

changes.mady.by.user Emese Pogany

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Menu path: UMS Administration > Global Configuration > Certificate Management > Cloud Gateway

Overview

Here, you can manage the certificates for the communication between the IGEL Cloud Gateway (ICG) and the endpoint devices.

...

Menu path: UMS Administration > Global Configuration > Certificate Management > Cloud Gateway

For details of how to set up all components for a connection to the ICG, read Installation Guide.

Use

Possible Actions

Include Page

...

_Create root certificate

...

_Create root certificate

 Create a root certificate.

Include Page

...

_Import root certificate

...

_Import root certificate

 Import a root CA certificate.

Include Page

...

_Create signed certificate

...

_Create signed certificate

 Create a signed certificate from the CA certificate (root or intermediate) that is currently selected.

Include Page

...

_Remove certificate

...

_Remove certificate

 Remove the selected certificate from the UMS. Only certificates that are not currently in use can be removed.

Include Page

...

_Export certificate chain to ICG

...

_Export certificate chain to ICG

 Export the selected end certificate and its complete certificate chain to a keystore in the IGEL Cloud Gateway keystore format.

Include Page

...

_Show certificate content

...

_Show certificate content

 Show the content of the selected certificate. 

Include Page

...

_Navigate to ICG

...

_Navigate to ICG

 Navigate to an IGEL Cloud Gateway that is using the selected certificate.

...

Create a signed certificate

Display name: Name in the certificate (common name, CN).

Your first and last name: Name of the certificate holder.

Your organization: Organization, company, government agency.

Your locality (or random identifier): The location of the organization.

Warning

The name in a signed certificate must be different from the one in the root certificate with which it is signed. UMS provides a warning in this case: Invalid CertificateImage Removed

Invalid CertificateImage Added


Your two-letter country code: ISO 3166 country code, e.g. DE for Germany.

...

Certificate type
Possible options:

  • CA Certificate: The certificate can be used to sign other certificates, but it cannot be used by the ICG.

  • End Entity: The certificate can be used by the ICG, but it cannot be used to sign other certificates.

Context menu (root certificate)

...

Import signed certificate: Imports a certificate that was already signed outside the UMS by the imported CA.

Import decrypted private key: Imports a private key file.

Info

If the private key is protected with a passphrase, you must decrypt it on the command line with OpenSSL before importing it: openssl rsa -in encrypted.key -out decrypted.key


Remove certificate: Deletes the certificate from the UMS.

...