Skip to main content

Generating and uploading the certificates

When generating the customized server certificate in XClarity Integrator Service, you shall provide the certificate bundle that contains the entire CA signing chain.

Procedure

  1. Log in to XClarity Integrator Service. Refer to Logging in to XClarity Integrator Service.
  2. Connect a server to XClarity Integrator Service.
    Note
    If the server certificate is not signed by a trusted international third party, a security message will be displayed. To avoid this security message, select the Trust the certificate permanently check box, and click Next.
  3. Generate the Certificate Signing Request (CSR) for XClarity Integrator Service.
    1. Click Security Settings. The Security Settings page opens.
    2. Click Server Certificate.
    3. Click Generate Certificate Signing Request (CSR).
    4. Fill in all fields in the Generate Certificate Signing Request (CSR) page: Country, State or Province, City or Locality, Organization, Organization Unit (optional), and Common Name.
      Note
      You can allow XClarity Integrator Service to generate the common name automatically by keeping the default value Generated by LXCI.
    5. Select the correct host name. If a wrong name is selected, the server cannot connect to XClarity Integrator Service.
    6. Click Generate CSR File. The CSRs will be downloaded automatically.
  4. Send all CSRs to your trusted CA.

    The trusted CA will assign a certificate bundle for each CSR. The certificate bundle contains the customized certificates and the complete CA chain of trust. The certificate should be in the Base64 encoding format.

  5. Upload the customized certificates and the generated server certificates to XClarity Integrator Service.
    1. Click Server Certificate on the Security Settings page.
    2. Click Upload Certificate to upload the certificate file (with the .cer extension).
    Note
    • The customized certificates shall contain the complete certificate chain, including the root certificates and the intermediate certificates.

    • The uploading priority of the certificates is: server certificates, intermediate certificates, and root certificates.