Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Generate a Certificate

You can create a new Certificate Signing Request (CSR) or Juniper Networks issued certificate from the Certificate Management page.

  • CSR—Choose CSR if your company maintains a Private Key Infrastructure (PKI) and certificate authority (CA), and can generate its own certificates. By issuing a CSR on Security Director Cloud, you will not need to upload the private key of the certificate to Juniper Security Director Cloud. After the CSR is generated by Juniper Secure Edge, download the CSR and submit it to your CA to generate a new certificate. Once generated, click Upload to upload the certificate on the Certificate Management page.

  • Juniper issued certificate—Choose Juniper Networks Issued Certificate if your company does not have its own CA. Juniper Networks will generate and keep the certificate on the system. Once the certificate has been generated, click Download to download the certificates. The CA certificate will be downloaded. Distribute the certificates to your managed devices.

To generate a certificate:

  1. Select Secure Edge > Service Administration > Certificate Management.

    The Certificate Management page appears.

  2. Select Generate > Certificate signing request or Juniper issued certificate..

    The Generate Certificate Signing Request or Generate Juniper Issued Certificate page appears.

  3. Complete the configuration according to the guidelines in Table 1.
    Note:

    Fields marked with an asterisk (*) are mandatory.
    Table 1: Generate Certificate Settings

    Setting

    Guideline

    Name

    Displays the name of the certificate.

    For example, jsec-ssl-proxy-root-cert. For a CSR, the certificate name is jsec-ssl-proxy-root-cert(CSR Request).

    Common name

    Enter a common name for the certificate.

    Organization name

    Enter the organization name that you want to associate with the certificate.

    Organization unit name

    Enter the organization unit or department that you want to associate with the certificate.

    Email address

    Enter the e-mail address of the certificate holder.

    Country

    Select the country from where you are creating this certificate.

    State or province

    Select the state or region from where you are creating this certificate.

    Locality

    Select the locality from where you are creating this certificate.

    Cryptographic Settings

    Algorithm

    Displays the algorithm or encryption type used to sign the certificate.

    No. of bits

    Displays the bit length size for the algorithm.

    Digest

    Displays the digests available for the certificate.

    Expiration

    Displays the validity period of the certificate.
  4. Click OK.
    The Certificate Management page opens with a message indicating that the certificate is created successfully.