NetScaler App Delivery and Security service

Manage SSL certificates

April 26, 2023

Contributed by:

C S

An SSL certificate is an essential part of any SSL transaction. You might need multiple certificates for different apps and domains. Using the NetScaler App Delivery and Security service, you can add certificates to a central repository instead of uploading a certificate each time you create an application. Later, you can simply select a certificate to use with an app while configuring the app. You can select one or more certificates to bind to an endpoint. The same certificate can be used by multiple apps. The central repository that safely stores the SSL certificates in the NetScaler App Delivery and Security service is called the SSL Certificate Manager.

Navigate to SSL Certificate Manager to view the SSL certificate dashboard where you can manage the SSL certificates.

Monitor SSL certificates

You can use the SSL certificates dashboard to view graphs that help you keep track of certificate information, such as issuers, key strengths, and signature algorithms. Click the graph to view the associated certificate details.

The SSL certificate dashboard displays the following graphs:

Expiration dashboard: Displays the list of certificates based on the expiration date. The certificates are classified as follows:
- Expiring in a week
- Expiring between 8–30 days
- Expiring between 31–90 days
- Expiring after 90 days
- Expired
Self Signed Vs CA signed: Displays the number of self-signed and CA-signed certificates.
Signature algorithms: Displays the number of certificates based on the following:
- SHA512-RSA
- SHA384-RSA
- SHA256-RSA
- SHA256-DSA
- MD5-RSA
- MD2-RSA
- SHA1-RSA
- SHA1-DSA
- ECDSA
- Not recommended
Usage: Displays the number of used and unused certificates.
Key strength: Displays the number of certificates based on KEY-512, KEY-1024, KEY-2048, KEY-4096, and KEY-UNAPPROVED.
Issuers: Displays the number of issuers.
Certificates: Click View All to view the complete list of certificates.

SSL certificate dashboard

You can also search for certificates by filtering them based on specific values. To filter based on values, navigate to the page that displays the complete list of certificates and add required filters.

SSL certificate filtering

Upload an SSL certificate

You can add certificates to a certificate chain and the NetScaler App Delivery and Security service automatically links the certificates based on the issuer and subject fields in the certificates.

The following options for uploading certificates are available:

Upload a single file also known as a certificate bundle. This file contains all the certificates and key that form part of the certificate chain.
Upload two files – the server certificate file and the certificate chain file.
Multiple files – Server certificate file, each of the intermediate certificates in a separate file, and the root certificate file.

Navigate to SSL Certificate Manager and click Upload SSL Certificate.
In the Upload SSL Certificate page, specify the following parameters:
- Certificate Name: Name for the certificate. Must contain only ASCII alphanumeric, underscore, and hyphen characters. Cannot be changed after the certificate is created. Max length = 30 characters.
- Certificate File: Upload the certificate file from your local computer.
- Key File: Upload the key file from your local computer.
- Key Password (if required): If you have an encrypted private key in PEM format, type the passphrase that was used to encrypt the private key.
- To add the certificate to the chain, select Add a certificate chain. Select an intermediate certificate or a certificate bundle to upload to the certificate chain. Click Add.
Click Create.

Modify or delete an SSL certificate

You can delete or update the certificate and key file. You can also update the certificate in the certificate chain.

To update a certificate

Navigate to SSL Certificate Manager.
In the SSL Certificate page, click the Edit icon for the certificate that you want to update.
In the Update SSL Certificate page, select one or both of the following and upload the file.

To delete a certificate

Navigate to SSL Certificate Manager.
In the SSL Certificate page, click the Delete icon for the certificate that you want to delete.
When prompted, click Yes, Delete.

The official version of this content is in English. Some of the Cloud Software Group documentation content is machine translated for your convenience only. Cloud Software Group has no control over machine-translated content, which may contain errors, inaccuracies or unsuitable language. No warranty of any kind, either expressed or implied, is made as to the accuracy, reliability, suitability, or correctness of any translations made from the English original into any other language, or that your Cloud Software Group product or service conforms to any machine translated content, and any warranty provided under the applicable end user license agreement or terms of service, or any other agreement with Cloud Software Group, that the product or service conforms with any documentation shall not apply to the extent that such documentation has been machine translated. Cloud Software Group will not be held responsible for any damage or issues that may arise from using machine-translated content.

Was this helpful

Manage SSL certificates

April 26, 2023

Contributed by:

C S

April 26, 2023

Contributed by:

C S

Manage SSL certificates

Monitor SSL certificates

Upload an SSL certificate

Modify or delete an SSL certificate

To update a certificate

To delete a certificate

In this article