WatchGuard Technologies SSL VPN Water Heater User Manual


 
Generating Trusted Certificates for Multiple Levels
156 Firebox SSL VPN Gateway
To combine the private key with the signed certificate
1 Use a text editor to combine the unencrypted private key with the signed certificate in the PEM file
format.
The file contents should look similar to the following:
-----BEGIN RSA PRIVATE KEY-----
<Unencrypted Private Key>
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
<Signed Certificate>
-----END CERTIFICATE-----
2 Save and name the PEM file; for example, AccessGateway.pem.
Generating Trusted Certificates for Multiple Levels
Note
You must determine whether or not your certificate has more than one level and, if it does, handle the
intermediate certificates properly.
To generate trusted certificates for multiple levels
1 Open Internet Explorer and access a Web page through the Firebox SSL VPN Gateway. For example,
enter an address similar to the following:
https://ipAddress:httpPort//www.mypage.com
where:
ipAddress is the IP address of your Firebox SSL VPN Gateway
httpPort is the Firebox SSL VPN Gateway port number
2 Double-click the Lock symbol in the bottom right corner of the browser.
3 Switch to the Certificate Path window pane at the top of the screen.
4 Double-click the first path level to bring up the certificate information for the first level and then go
to the Details screen.
5 Click the Copy to File button at the bottom.
6 After the Certificate Export wizard appears, click Next.
7 Click the format Base-64 encoded and then click Next.
8 Enter a filename; for example, G:\tmp\root.cer.
9 Review the information and note the complete filename. Click Finish.
10 Click OK to close the Certificate Information window for the first level.
11 Repeat Steps 4–10 for all levels except the last level.
12 Insert all certificates into one file and make sure that any intermediate certificates are part of any
certificate file you upload.
The file to be uploaded should be in the following format:
private key
Server Certificate