SSL Certificate

Function

Table 1 describes the system management functions on the MM910 web user interface (WebUI).

**Table 1** Function description
Item	Function Description
SSL Certificate	NOTE: When both the master and slave chassis are installed, the slave chassis does not support certificate management configuration. The SSL Certificate page allows you to view Secure Sockets Layer (SSL) certificate information, customize SSL information, and import a new certificate. The SSL certificate sets up an SSL security channel over HTTPS between the client browser and the web server to implement data encryption transmission between the client and server, preventing information leakage. SSL ensures the security of data transmission and is used for verifying the website to be accessed. The parameters are described as follows: Issued To: Information about the user (current server) of the SSL certificate. CN: name of a user OU: department of a user O: company of a user L: city of a user S: province of a user C: country of a user Issued By: The parameters are the same as those of Issued To. Valid Date: Start date and end date when the SSL certificate takes effect. Serial Number: Serial number of the SSL certificate, used for identification and migration of the certificate. NOTE: Import server certificate files only in .pem format. Import customized certificate files only in .pfx or .p12 format. A CSR file correlates with the server certificate applied from the CA organization. Do not generate a new CSR file before importing the server certificate. Otherwise, the original CSR file is overwritten by the new CSR file and cannot be recovered. You have to use the new CSR file to apply for a new server certificate from the CA organization. Before importing a self-produced certificate, ensure that you use an encryption algorithm with a higher security level when the certificate is being generated, for example, RSA2048. After the importing is complete, restart MM910 at appropriate time for the certificate to take effect. NOTE: After importing an SSL certificate, check whether the root certificate of the authentication authority exists in the client browser. The following uses Internet Explorer as an example to describe how to view and add a root certificate. Open Internet Explorer. On the toolbar, choose Tools > Internet Options. The Internet Options window is displayed. On the Content tab page, click Certificates. The Certificates window is displayed. On the Trusted Root Certification tab page, check whether the authority of the SSL certificate is listed. If yes, go to 5. If no, go to 6. Check whether the certificate is out of date. If yes, go to 6. If no, go to 7. Click Import under Trusted Root Certification. Import the root certificate as prompted. Open the browser, and check whether is displayed in the address bar. If yes, no further action is required. If no, contact technical support.