To resolve this problem, perform the following steps:
Note: Private / public key pair may be generate in multiple ways, but the following examples are using openssl
- Generate a private key using the following command:
openssl genrsa -des3 -out private.pem 2048
- When requested for a pass phrase, hit the Enter key
- Open the file (i.e. private.pem) with a text editor and copy the content
- Login to the Pulse One serial console
- Enter the command to import the private key:
https set key
- A message will appear requesting to overwrite the private key, enter 'Y'
Overwriting private key will invalidate and delete current certificate.
Overwrite existing key? [y/N]: Y
- Paste the content from private key in the serial console
- Once import is successful, enter the following command to create a new csr:
https csr --with-text
- Complete the CSR template form and CSR content will be outputted on the screen. Copy all content starting with "-----BEGIN CERTIFICATE REQUEST-----" and ending with "-----END CERTIFICATE REQUEST-----"
-----BEGIN CERTIFICATE REQUEST-----
MIICtjCCAZ4CAQAwcTELMAkGA1UEBhMCVVMxHzAdBgNVBAMMFnAxLmdlYy5sYWIu
.....
0mpqEIon3zhkoFGjZXLEmT19FVsdBFbeqAY=
-----END CERTIFICATE REQUEST-----
- Provide the following information to your certificate authority to issue a public key
- Once the public key is issued, copy the PEM or Base64 content
- From the Pulse One serial console, enter the following command:
https set cert
- Paste the content of the public key
- Once completed, run the command to restart services
services restart