SSL certificate encrypt data transmitted over a network. Whenever a user connects to a server using SSL, the server presents the SSL certificate to the user. Afterwards, the device verifies the certificate to ensure that it is valid and issued by a trustworthy certificate authority (CA). Data is securely transmitted over an encrypted connection if the certificate is valid between the user's device and the server. It prevents third parties from intercepting or tampering with the data.
SSL certificates can be created, discovered, and stored in the centralized repository of Key Manager Plus, and requests can be raised for new certificates or domain addition to an existing certificate. Moreover, you are notified when a certificate is about to expire to help you with their timely renewal.
Use Key Manager Plus to:
- Create, discover, or import self-signed or CA issued certificates in the network.
- Generate Certificate Signing Request (CSR).
- Add requests for new certificates or adding a sub domain to an existing certificate.
- Receive notifications when certificates are about to expire.
Self-signed certificates and CSRs can be generated using RSA / DSA / EC key algorithms and SHA signature algorithm as per the details below:
- RSA – 1024, 2048, or 4096 bit keys; & SHA-2 (256, 384, or 512 bit) signature.
- DSA – 512, or 1024 bit keys; & SHA-1 (160 bit) signature.
- EC – 128, or 256 bit keys; & SHA-2 (256, 384, or 512 bit) signature.