Skip to main content

Use CA-signed certificates for key management server

For secure communications between a key management server and the browser used for accessing System Manager, you can obtain signed certificates from a Certificate Authority (CA).

Before you begin

  • You must be logged in with a user profile that includes Security admin permissions. Otherwise, certificate functions do not appear.

About this task

Using CA-signed certificates is a two-step procedure.

  1. Step 1: Complete and submit CSR for a key management server
    You must first generate a certificate signing request (CSR) file and then submit the file(s) to a certificate authority (CA).
  2. Step 2: Import key management server certificates
    You import certificates for authentication between the storage array and the key management server. There are two types of certificates: the client certificate validates the controllers, while the key management server certificate validates the server.