Sign a X.509 Certificate

You can generate a request for a certificate authority (CA) to sign a self-signed X.509 certificate, to make it a trusted certificate. (This process doesn't apply to PGP certificates.)

1. Select Generate Certificate Signing Request. This option is available in either of two menus:

   • One menu opens in the Certificates page, from the row for a self-signed X.509 certificate.

   • The other menu is the Actions menu in the details page for that certificate.

2. Provide the private key password for the certificate, then select a file location.

3. Save the request file. Its default name is [alias]_CSR.csr.

You are expected to follow a process established by your organization to forward the file to a CA. You would import the trusted certificate returned in response.