Import wildcard certificate into Brightmail 8.0.2
Updated: 11 Aug 2010 | 9 comments
I found another post but it was over a year old so I'm looking to see if there's any new info. We have a wildcard certificate, *.domain.com, issued by GoDaddy and would like to use it in Brightmail Gateway too. Can this be done?
discussion Filed Under:
Comments
Hi there, As long as you make
Hi there,
As long as you make the request on SBG, send the CSR to the entity and get the certificate back yes, you should be able to use it just fine.
You cannot just import the certificate without having a request first.
Thanks,
Marco Bicca
That's not how you import a
That's not how you import a wildcard cert from any vendor. You can do this on any real web server including Apache but it looks as though Symantec didn't bother to do that for it's version of Apache
I was able to have the
I was able to have the SBG CSR signed by my provider (Digicert) and install it successfully. The problem I have is it is not being sent to the browser. I still get the self-signed one.
Hi Sean, If you intend to use
Hi Sean,
If you intend to use this cert for Control Center access, have you configured Control Center to use it?
You can configure Control Center to use a cert using the "User interface HTTPS certificate: " setting under Control Center Validation section on Control Center Settings page (Administration > Control Center). You can select the cert that you want to use for Control Center from the "User interface HTTPS certificate: " drop down list. I think it is currently set to "Demo Certificate".
Regards,
Adnan
OK - that worked - after
OK - that worked - after I added in DigiCert's CA chain.
Thanks for the update. Just
Thanks for the update.
Just to get some clarification: you had already configured the Control Center to use the new cert when you posted the question, right? Sorry to ask this question, but from your original post it wasn't clear to me whether you had already completed the Control Center configuration step or not.
So you are saying that it's only after you added the DigiCert's CA chain that the problem was resolved?
Thanks
Adnan
What type of web server did
What type of web server did you specify for the cert you were able to import? I've tried IIS, Apache, and Tomcat but SBG keeps saying "No stored certificate request matches this certificate." I was able to import GoDaddy's intermediate cert into the CA tab but not the actual cert to use.
Perhaps Symantec could spend the few $ it takes to purchase a wild card cert from GoDaddy or another vendor and then put up a FAQ on how to do this. For what is paid for SBG every year surely Symantec can afford to do that.
Hi, Are you trying to import
Hi,
Are you trying to import the cert without a corresponding CSR in the SBG? Currently, you can not import a cert if it was not issued based on a CSR generated on SBG. Please take a look at the following KB article:
http://service1.symantec.com/SUPPORT/ent-gate.nsf/...
Regards,
Adnan
Every other web server on the
Every other web server on the planet supports importing a cert when it hasn't generated the CSR. This just show poor product design.
Would you like to reply?
Login or Register to post your comment.