RapidIdentity Product Guide: Legacy UI

Create and Manage SSL Profiles

There is no limit to the number of SSL Profiles that can be created.

Follow these 6 steps to create and manage an SSL Profile:

  1. Navigate to Appliance | Management | SSL Management and click Create SSL Profile.

  2. Name the profile, enter a description if desired, and click Create.

    1. The SSL Profile and and Description can be updated at any time by clicking Edit.

  3. Click Import.

  4. There are three options from which to choose: Import Key and Certs; Import KeyStore; and Import from Profile.

    1. Import Key and Certs allows existing private keys and certificates to be attached to an SSL Profile. Supported file types are PEM and DER

      Legacy_Create_Edit_SSL_Profile.png
      • Click Choose File to select the desired key file and certificate files and then click Import.

    2. Import KeyStore allows a previously saved KeyStore to be attached to an SSL Profile. The supported file types are JKS and PKCS12/PFX

      Legacy_Import.png
      1. Enter the KeyStore Passphrase and Alias and then click Import.

    3. Import From Profile allows users to integrate the certificate(s) from an existing SSL Profile. 

      Legacy_Import_from_Profile.png
      1. If more than one SSL Profile exists, select the desired SSL Profile and click Import.

      Caution

      Clicking Import in this step overwrites any existing certificates attached to an SSL Profile.

      Always back up existing certificates and KeyStores before choosing to Import From Profile.

    4. After the import is complete, click Test to verify the SSL Profile and select the desired port. A successful import and test opens a new window to confirm the SSL Profile validity. This test window is only available for 15 seconds. 

      Legacy_SSL_Profile_OK.png

      Browser Notes

      Depending on the Internet browser of choice and its configuration, the browser developer tools may display warnings or errors. In the context of the SSL Profile, if the browser verifies a "Secure Connection" and the certificate chain as "Valid Certificate", then the import and SSL Profile are valid.

    5. Click Send Cluster Reload to update the RapidIdentity instance.

      Browser Notes

      Depending on the Internet browser of choice and its configuration, the browser developer tools may display warnings or errors about a previously installed certificate on the page as not being secure (i.e. the default, self-signed certificate). If the browser window is closed and then reopened to the RapidIdentity instance, the URL should display as secure and the developer tools may not display this particular warning or error.