First attempt at this. Attempting to generate a CSR in 2048 encryption for GoDaddy SSL certificates. UT said they would try to add this feature in a future update. Bug# 6517
As root I did these commands.
Code:openssl genrsa -des3 -out domainname.key 2048I then connected to the UT box via PuTTy and SSH and pico the domainname.csr file copied the encrypted text out into a godaddy CSR request form and hit submit. GoDaddy accepted this and re-keyed the certificate and spat out a apache certificate I downloaded opened in notepad then pasted the contents into the UT web GUI config > administration > certificates > import > domain certificate and intermediate certificate.Code:openssl req -new -key domainname.key -out domainname.csr
Lost connection and have not been able to reconnect to web GUI. Restart UT and try again, still no luck.
Next attempt I will try to import the certificate via CLI instead of using the web GUI. For testing I am using a production UT backup config on a spare UT box I install version 6.2 install packages then apply the restore. I then upgrade to version 7.0 then proceed to generate a CSR and re-key an existing certificate for this site. Download certificate and attempt to apply. It is worth mentioning that within the web GUI there is also a self signed certificate generated, no clue if that may cause problems.
- Untangle NG Firewall
- Untangle IC Control
- Help Me Decide