How to Install an SSL Certificate on AEP Netilla SSL VPN?

You’re managing your company’s remote access gateway using AEP Netilla SSL VPN. Everything’s working fine until one day, a browser warning pops up with “Not Secure” when employees log in.

AEP Netilla SSL VPN is a secure remote access solution that allows users to connect to a private internal network, like your office systems or intranet, using just a web browser.

What You’ll Need Before You Start

Before you jump in and start clicking buttons, let’s make sure you’re armed with the right tools. Here’s your SSL pre-flight checklist. Make sure you tick off everything before we dive into it.

Admin Access to AEP Netilla SSL VPN

Make sure you have administrator-level access to your Netilla VPN management console. This is where you’ll upload the certificate and configure SSL.

A Valid SSL Certificate

You need an SSL certificate from trusted CAs like DigiCert, Certera, Sectigo, issued for your VPN domain (like vpn.yourcompany.com).

Private Key and Certificate Chain

When you generate your SSL certificate, you’ll get:

• Your private key (.key file)
• The main certificate (.crt or .pem)
• Intermediate and root certificates (the certificate chain)

Before proceed for the installation, make sure you have CSR, if you don’t have, Follow CSR Generation Steps on AEP Netilla SSL VPN.

Steps to Install an SSL Certificate on AEP Netilla SSL VPN

Generate a Certificate Signing Request

You can install a new SSL certificate in your AEP Netilla SSL VPN only after you have created a Certificate Signing Request (CSR). This small file instructs your Certificate Authority (CA) on what domain you are securing and then proves that you own it.

Here’s how to do it:

• Log in to your AEP Netilla Admin Console.
• Navigate to System → Certificates.
• Click on Create CSR.

Now, fill in the details:

• Common Name (CN): This is your VPN’s domain name. Example: vpn.yourcompany.com
• Organisation Name: Your company’s legal name.
• Country, State, City: Self-explanatory. Use accurate information.

After filling hit Generate and save the CSR file locally. Now submit this CSR file to your SSL provider. They’ll use it to issue your SSL certificate.

Receive and Organise the Certificate Files

When your CA approves your information, they will email you with a number of key files. These are not to be confused. Store them securely and label them.

This is what we can look forward to:

• Your main certificate – (typically called yourdomain.crt)
• Intermediate certificate(s) – assist browsers in developing trust in your SSL
• Root certificate
• Private key – only when you have generated the CSR outside of using Netilla

Upload the SSL Certificate to Netilla

Now it’s time to upload everything to Netilla.

Go back to System → Certificates in your Netilla Admin Console.

Click on Import Certificate.

• Your main certificate (.crt or .pem)
• Your private key
• The intermediate chain (if required)

Double-check everything, then click Import or Save. If all went well, you’ll now see your new certificate in the list with your domain name and expiry date proudly displayed.

Assign the New Certificate to the VPN

Now you need to put the new certificate to work.

• Go to System → Services.
• Find the SSL VPN listener/service (this is what handles incoming VPN traffic).
• In the SSL Certificate dropdown, select the new certificate.
• Hit Apply or Restart Service to activate it.

Test Your SSL Installation

Access your VPN portal. Search for the padlock symbol on the browser bar. Click to see the certificate information: Is it still valid? Is the field a match? Take the free SSL Labs Test of the domain.

Conclusion

All you have done is to make your AEP Netilla VPN safe using an SSL certificate, which is faster, cleaner, and free of stress. Wait no longer until the risk of danger is threatened by the browser warnings. Are you looking for an Cheap SSL certificate? Get one today by calling us.