Volt MX Foundry console User Guide: Settings > SSL Certificates
SSL Certificates
Note: SSL Certificates are available in Enterprise and Community editions of Volt MX Foundry Admin Console. Customers using VoltMX Foundry Admin Console in Starter edition cannot view the following features:
- Service Monitor
- Jobs
- Health Check
- Logs
- Reports
- Downloads
To configure secured communication between the server and the client, App Services provides an interface to upload the cliennt certificates and the root certificates of the backend to the middleware. The uploaded SSL certificates aids in encrypting the information sent between the client and the server.
There are two ways of uploading the certificates to the middleware:
- One-way SSL
- Two-way SSL
One-way SSL: A root certificate of the backend server is uploaded . When the client sends a request to the server, the middleware server(client) validates the certificate uploaded with the certificate in the trust store. If the certificate is found in the trust store, the client accepts the communication from the server.
Two-way SSL: A client SSL certificate is uploaded in the key store. When a request is received , both the parties (client and the server) validates the certificates uploaded and the response is sent to the client.
To access SSL certificates in the App Services, follow these steps:
- Log on to App Services. For more information on logging, refer Launching the App Services.
-
Click Settings from the left pane of the App Services and click SSL Certificates tab to upload the SSL certificates. The SSL Certificates page appears.
The following fields are displayed in this screen:
Field | Description |
---|---|
Certificate Alias | Name of the certificate provided while uploading. > Note: The field is case-insensitive and must be unique. |
Type | Type of the certificate uploaded. SSL certificates are of two types: One-way SSL Two-way SSL |
Expires On | The expiry date of the uploaded certificate. |
Uploaded On | The uploaded date of the certificate. |
Uploaded By | Name of the certificate uploaded user. |
Certificate Details | Details of the uploaded certificate. |
Field | Description |
---|---|
Cert Domain | Domain of the uploaded certificate. |
Target Domain | Intended target server to which the data is sent. |
Organization | Certificate issuing organization. |
Issuer | Certificate issuing authority. |
Add certificate | Click Add Certificate to upload the certificate. |
Delete | Delete the uploaded certificates. |
You can perform the following actions in this screen:
Add Certificate
You can add a One-way or Two-way SSL certificates by clicking on Add Certificate button. To add a certificate, click Add Certificate. An Add SSL Certificate pop-up appears with two options:
One-way SSL
You can upload One-way SSL certificates the root certificate signed by your own internal private certificate authority or any intermediate certificates. Enter the required details in the fields provided to upload a one-way SSL certificate:
You can perform the following actions in this screen: Add Certificate Delete a Certificate
Add Certificate
You can add a One-way or Two-way SSL certificates by clicking on Add Certificate button. To add a certificate, click Add Certificate. An Add SSL Certificate pop-up appears with two options: One-way SSL Two-way SSL
One-way SSL
You can upload One-way SSL certificates the root certificate signed by your own internal private certificate authority or any intermediate certificates. Enter the required details in the fields provided to upload a one-way SSL certificate:
You can perform the following actions in this screen:
Add Certificate
You can add a One-way or Two-way SSL certificates by clicking on Add Certificate button. To add a certificate, click Add Certificate. An Add SSL Certificate pop-up appears with two options:
One-way SSL
You can upload One-way SSL certificates the root certificate signed by your own internal private certificate authority or any intermediate certificates. Enter the required details in the fields provided to upload a one-way SSL certificate:
Field | Description |
---|---|
Certificate Alias | Enter an alias name to upload the certificate. > Note: The field is case-insensitive and must be unique. |
Server SSL Certificate | Select the certificate to be uploaded by clicking the Browse button. |
Submit | Click Submit to upload the certificate. |
Cancel | Cancel the operation. |
To upload one-way SSL, perform the following actions:
- Click one-way SSL from Add SSL Certificate pop-up.
- Enter an alias name for the certificate to be uploaded.
- Select the certificate by clicking the Browse button.
- Click Submit.
Two-way SSL
The two-way SSL certificate is the client certificate uploaded in the trust store. In Add Certificate pop-up, select Two-way SSL and enter the required details in the fields provided:
Field | Description |
---|---|
Certificate Alias | An alias name for the certificate to be uploaded. > Note: The field is case-insensitive and must be unique. |
Client SSL certificate | Browse to select the client SSL certificate. |
Target Domains | Target server to send the data. > Note: This field is mandatory if you are using SSL Certificates in Community edition. |
Private Key | Private key of the certificate to be uploaded. |
Private Key Password (Optional) | Password for the private key. > Note: This is an optional field. This field is not applicable in community edition. |
Submit | Submit to upload the details entered. |
Cancel | Cancel to abort the operation. |
Perform the following actions to upload a two-way SSL:
- Click Two-way SSL from Add SSL Certificate pop-up.
- Enter the required details and click Browse to select the Two-way SSL certificate.
- Click Submit to upload the certificate to the middleware.
Delete a Certificate
You can delete an uploaded certificate by performing the following actions:
- Log on to App Services and click Settings from the left pane of the screen.
-
Click SSL Certificates tab from the top pane of the settings screen. The list of uploaded certificates appears.
You can find a Delete icon displayed on the right corner across each row.
- Click Delete to delete the certificate.
Limitation
- Volt MX supports PKCS#1 private key.