Generating a CSR and Obtaining a Self Certificate from a CA
To use a self certificate, you must first request the digital certificate from a CA, and then download
and activate the digital certificate on the VPN firewall. To request a self certificate from a CA, you
must generate a Certificate Signing Request (CSR) for and on the VPN firewall. The CSR is a file
that contains information about your company and about the device that holds the certificate. Refer
to the CA for guidelines about the information that you must include in your CSR.
To generate a new CSR file, obtain a digital certificate from a CA, and upload it to the VPN
firewall:
1. Select VPN > Certificates from the menu. The Certificates screen displays.
shows the middle section of the screen with the Active Self Certificates section, Generate Self
Certificate Request section, and Self Certificate Requests section. (The Self Certificate
Requests table contains one example.)
Figure 7-13 Certificates, screen 2 of 3
Managing Users, Authentication, and Certificates
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual
v1.0, April 2010
Figure 7-13
7-21