Manage CSRs

Use the manageCSRs command on CM to manage Certificate Signing Requests (CSRs).

About this task

CSRs created with this command cannot be viewed through the CM GUI.

Procedure

  1. Create a CSR. The script generates a temporary self-signed key certificate in the HSM or an Secure Proxy system certificate store, if the HSM is not enabled. Then send the CSR to a Certification Authority (CA).
  2. When the CA returns the CA-signed certificate, run the manageCSRs command again to replace the self-signed key certificate with the CA-signed certificate. The updated CA-signed certificate is added to the Secure Proxy system certificate store, and the CSR status is set to complete.

    The key certificate can now be used by Secure Proxy.

  3. Use the manageCSRs command to perform the following tasks: