Checkpoint VPN – CSR Generation & SSL Installation Guide.

Checkpoint is a unique VPN gateway appliance. Typically CSR generation and SSL Installation are independent from one another, but Checkpoint desires to have both Root and Intermediate CA installed on the system before CSR generation can occur. So up front you will have to ask or consult your CA vender for these two certificate files before you generate your CSR for the enrollment of a SSL/TLS Certificate. Checkpoint is an apache based system so you will need x509/pem versions of your Root, Intermediate, and SSL Certificate. To prepare your Checkpoint VPN, Generate a CSR, and install your SSL Certificate on Checkpoint perform the steps below: Step 1: Creating your Intermediate/Root CA certificates: Getting your Root and Intermediate CA will vary […]

Read More

What Certificate Authorities Do & How Their SSL Certificate Security is Enforced.

  There has been a lot of misleading information flying around within the security industry and various tech blogs regarding Certificate Authorities (CA), Security, and the function of SSL Certificates. Lots of finger pointing with no foundation of knowledge on who does what. The confusion is how encryption keypairs work, controlled, and managed, vs what Certificate Authorities (CA) actually do when they issue their different certificate products, and how browsers enforce the security behind SSL Certificates. Security is not all in the hands of the Certificate Authorities (CA). It all started with a CA named VeriSign. What/Who Are The Certificate Authorities? VeriSign headquartered in Virginia became one of the world’s first and biggest CA, providing third party authentication of public […]

Read More

What Do The Details of a Digital Certificate Mean?

There is a lot of information that gets added to a digital certificate. The information within these fields under the details of a digital certificate state the parameters from its issuance. Some of these fields are just informational, but sometimes an application can be built around these specific fields. With the standards of the security industry always changing these attributes may change at anytime to comply with CAB Forum requirements. To see the details of a digital certificate just click on the Details tab. Below is a brief run down of each field displayed on a Digital certificate and what them mean. Version: This field describes the version of the encoded certificate. For SSL certificates, the x509 version is 3 […]

Read More

Mitel MiCollab MSL Server – SSL Installation

Like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) was created. Your private key will always be left on the server system where the CSR was originally created. Your SSL certificate will not work without this private key file. We will assume that this is the original system. To install your SSL certificate on Mitel MiCollab perform the following. Step 1: Downloading your SSL Certificate & its Intermediate CA certificate: If you had the option of server type during enrollment and selected Other you will receive a x509/.cer/.crt/.pem version of your certificate within the email. Alternately you can access your Certificate User Portal by the supplied link in the […]

Read More

Citrix Netscaler VPX (10) Loadbalancer – SSL Installation

Like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) was created. Your private key will always be left on the server system where the CSR was originally created. Your SSL certificate will not work without this private key file. We will assume that this is the original system. To install your SSL certificate on Citrix Netscaler 10 & 10.5 perform the following. Step 1: Downloading your SSL Certificate & its Intermediate CA certificate: If you had the option of server type during enrollment and selected Other you will receive a x509/.cer/.crt/.pem version of your certificate within the email. Alternately you can access your Certificate User Portal by […]

Read More

CSR Generation Instructions (All Systems)

A Certificate Signing Request or CSR is a specially formatted underdeveloped public key  that is used for enrollment of an SSL Certificate. The information on this CSR is important for a Certificate Authority (CA). It is needed to validate the information required to issue a SSL Certificate. Creation of a CSR also means you are creating your private key. The private key will always be left on the system or application where the CSR is generated. The Private key will be required later for installation. If you do not see your server listed Perform a search or you may have to contact your server vender or hosting provider for best practices on how to generate a CSR on your system. […]

Read More

Filemaker 15 – SSL Installation

Like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) was created. Your private key will always be left on the server system where the CSR was originally created. Your SSL certificate will not work without this private key file. We will assume that this is the original system. To install your SSL certificate On Filemaker 15 perform the following. Step 1: Downloading your SSL Certificate & its Intermediate CA certificate: If you had the option of server type during enrollment and selected Other you will receive a x509/.cer/.crt/.pem version of your certificate within the email. Alternately you can access your Certificate User Portal by the supplied link in the email […]

Read More

SSL Installation Instructions (All Systems)

After your certificate has been issued like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) was created. This is because your private key will always be left on the server system where the CSR was originally created. It will be either in the application or left somewhere on a directory and path you choose when you generated the CSR. Your SSL certificate will not work without this private key file. If you do not see your server listed perform a search, or you may have to contact your server vender or hosting provider for best practices on how to install a SSL certificate on your system. Check your […]

Read More

How to Convert an SSL Server Certificate from Apache to PKCS12/PFX

Depending on your network you may have to move your SSL/TLS server certificate and its private key from one system to another. This article covers how to move your SSL certificate, its private key, and its intermediate CA from Apache to pfx also known as a pkcs#12 file. This will require a conversion using OpenSSL that is on the Apache System. Apache systems are very customizable. The directory location and naming of the individual files needed vary depending on your personalized system. Below are generalized instructions. We will start by assuming that you have already successfully installed the SSL certificate on the Apache web server. To move your certificate keypair from Apache to PFX perform the following: Step 1: Finding your […]

Read More

Digital Server Certificate Overview

Quick overview of the importance of a Digital Server Certificate it affects and why. Lets start off by asking some questions and then answering them.. What is a Digital Server Certificate? What is its purpose of a server certificate. Why does my website need a Digital Server Certificate? What happens if you do not have a valid server certificate? Who needs a server certificate? Who hates server certificates? Thing to know! What is a Digital Server Certificate? “It’s All about trust!” A Digital Server Certificate is a bit of code on your web server that provides security for online communications validated by a governing third party Certificate Authority (CA). Also known as a SSL certificate or a TLS certificate. Purpose […]

Read More