The HTTPS Setup window has five tabs:
Create Certificate Request: This menu utilizes the OpenSSL library to
generate certificate Requests and self-signed certificates.
Subject Alternative Name Extension: This menu is used to add altern-
ative names to an X.509 extension of a Certificate Request.
Certificate Request: A holder for the certificate request generated
under the Create Certificate Request tab. Copy and paste this Cer-
tificate text in order to send it to your Certificate Authority.
Upload X.509 PEM Certificate: Use the window under this tab to paste
your X.509 certificate text and upload it to VersaSync.
Upload Certificate File: Use this tab to upload your certificate file
returned by the Certificate Authority. For more information on format
types, see "Supported Certificate Formats" on the next page.
Exit the HTTPS Setup window by clicking the X icon in the top right window
corner, or by clicking anywhere outside the window.
Should you exit the HTTPS Setup window while filling out the certificate request
parameters form before clicking the Submit button, any information you entered
will be lost. Exiting the HTTPS Setup window will not lose and Subject Alternative
Names that have been entered. When switching between tabs within the HTTPS
Setup window, the information you have entered will be retained.
2.8.6.2 About HTTPS
HTTPS provides secure/encrypted, web-based management and configuration
of VersaSync from a PC. In order to establish a secure HTTPS connection, an SSL
certificate must be stored inside the VersaSync unit.
VersaSync uses the OpenSSL library to create certificate requests and self-
signed certificates. The OpenSSL library provides the encryption algorithms used
for secure HTTP (HTTPS). The OpenSSL package also provides tools and soft-
ware for creating X.509 Certificate Requests, Self Signed Certificates and Priv-
ate/Public Keys. For more information on OpenSSL, please see www.openssl.org.
Once you created a certificate request, submit the request to an external Cer-
tificate Authority (CA) for the creation of a third party verifiable certificate. (It is
also possible to use an internal corporate Certificate Authority.)
If a Certificate Authority is not available, or while you are waiting for the cer-
tificate to be issued, you can use the default Safran self-signed SSL certificate
that comes with the unit until it expires, or use your own self-signed certificate.
The typical life span of a certificate (i.e., during which HTTPS is available for use)
is about 10years.
2.8 Configuring Network Settings
CHAPTER 2 • VersaSync User Manual Rev. 12
79
To Next Page
Loading...
