Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Please suggest me how to upload new Certificate into SSL VPN(Juniper)

Gauravdhingra_
Occasional Contributor
‎01-11-2009 08:10:PM
‎01-11-2009 08:10:PM

Please suggest me how to upload new Certificate into SSL VPN(Juniper)

Hi Guys,

Please suggest me how to upload the new Certificate from SSL VPN (Juniper) I have software version:5.5R6 (build 12857) .

Please suggest

0 Kudos
4 REPLIES 4
Gavrilo_
Not applicable
‎01-12-2009 05:54:AM
‎01-12-2009 05:54:AM

Re: Please suggest me how to upload new Certificate into SSL VPN(Juniper)

Hi,

Create a Certificate Signing Request (CSR)

From the GUI:

Back up or "export" configuration, just for kicks: Maintenance > Import/Export > Configuration

Navigate to System > Configuration > Certificates > Device Certificates

Click "New CSRÉ" button

Complete the form. It will give you a long certificate request string that looks like this:

ÑÐBEGIN CERTIFICATE REQUESTÑÐ
MIIBdTCB3wIBADA2MRkwFwYDVQQKExB2cG4ucGVybGVnZW4uY29tM
É continuing long stringÉ
+3rFr+eTNCAzpmBY5Sc9TFpc1iTdxDRcQV5f3RGEoU5LmSIJ6cyn8Ho=
ÑÐEND CERTIFICATE REQUESTÑÐ

This is your Certificate Signing Request (CSR). ItÕs also called a private key. Keep a copy of it, and keep it safe.

Get Your Signed Certificate from a Certificate Authority

Go to certificate authority (CA) like Verisign, or your in-house CA and have certificate signed. Outside CA signing firms do some email or phone verifications.

Import SSL Certificate

After you have the .crt or .cer file, navigate back to your Pending Certificate Signing Request

Import your signed certificate

Navigate your browser to your external VPN site and verify that you donÕt get any errors

If You Have an Intermediate Bundle or Chain Certificate

To install your chain certificate, follow these extra steps:

Navigate to System > Configuration > Device Certiicates

Near the top of the screen, you should see text that says something like this:

Specify the Device Certificate(s). If you donÕt have a certificate yet, you can create a CSR and import the resulting signed certificate. If necessary, you can add custom Intermediate Device CAs.

If you do NOT have the above line, you will need to Upgrade your Juniper SSL VPN <http://technotes.twosmallcoins.com/?p=9>.

If you have the "Intermediate Device CAs" link youÕre OK. Click on that link.

Click "Import CA CertificateÉ"

Click "BrowseÉ" and select your certificate.

Import Certificate

Log in as a regular (non administrative) user and verify that you donÕt get any SSL certificate errors. IÕd recommend testing with both Internet Explorer and Firefox http://technotes.twosmallcoins.com/?p=35.

Gavrilo

0 Kudos
Yves_
Occasional Contributor
‎01-27-2009 01:02:PM
‎01-27-2009 01:02:PM

Re: Please suggest me how to upload new Certificate into SSL VPN(Juniper)

Hi,

I install a new certificate today. I want to backup my certificate, the private and the public key. Can we export my certificate.

Thanks

Yves

0 Kudos
ruc_
Regular Contributor
‎01-27-2009 04:25:PM
‎01-27-2009 04:25:PM

Re: Please suggest me how to upload new Certificate into SSL VPN(Juniper)

If you generated the CSR on the SA (SSL VPN device) then you cannot export/extract the private key from the device itself. However you can save the system.cfg file if you wish to backup the cert.

0 Kudos
Mgk_
Not applicable
‎09-09-2009 06:39:AM
‎09-09-2009 06:39:AM

Re: Please suggest me how to upload new Certificate into SSL VPN(Juniper)

Hi

Just a quick note if you come accross this from google as i did, a certificate signing request (csr) is not a private key. you should not give the private key to anyone including a certificate authority.

/Adam

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.