How to Install SSL Certificate on Nutanix Cluster?

1 Star2 Stars3 Stars4 Stars5 Stars (16 votes, average: 4.94 out of 5)
Loading...
Install SSL Certificate on Nutanix Cluster

Introduction

Welcome to this exceptional tutorial, where I shall guide you through the process of installing an SSL Certificate on your Nutanix Cluster server with the utmost expertise. Rest assured, it will be an effortless endeavor! We shall divide it into three distinct parts to facilitate a comprehensive understanding.

To make things even more rewarding, we will conclude this tutorial by introducing you to a reliable online resource where you can find cost-effective SSL certificates tailored for your Nutanix Cluster.

Generating a CSR on Nutanix Cluster

This section will explore two diverse methods that you can use to generate a CSR (Certificate Signing Request). However, before discussing those, let me explain what CSR is.

A CSR file requires a certificate authority to issue an SSL certificate. It encompasses necessary information regarding your server and organization, like your domain and company name, location, etc.

To generate a CSR, you have two methods:

To generate CSR manually, use the OpenSSL Utility Tool:

In this step-by-step tutorial, we will show you how to generate a CSR on a Nutanix cluster. We’ll use the OpenSSL utility.

Run the following command to set the location of your OpenSSL configuration file:

Set OPENSSL_CONF=C:\OpenSSL-Win64\bin\openssl.cfg

This command applies to Windows environments. If you’re on Linux, set the variable using below command:

export OPENSSL_CONF=/path/to/openssl.cnf

Your openssl.cfg file should look like this:

[ req ] default_bits = 2048
default_keyfile = key.pem
distinguished_name = req_distinguished_name
encrypt_key = no
prompt = no
string_mask = nombstr
req_extensions = v3_req[ v3_req ] basicConstraints = CA:FALSE
keyUsage = digitalSignature, keyEncipherment
extendedKeyUsage = serverAuth, clientAuth
subjectAltName = Add alternative domains here[ req_distinguished_name ] 0.organizationName = Your Organization Name
organizationalUnitName = leave blank
commonName = The Fully-qualified domain name you want to secure
countryName = US
stateOrProvinceName = New York
localityName = John Marte

Note: Replace the parts in bold with your actual contact data

Run the command below to generate your CSR and Private key:

On Linux, replace openssl.cfg with the path to your openssl.cnf file.

openssl req -new -nodes -out yoursitename.csr -config openssl.cfg -sha256

Now, you can open your newly generated CSR file with any text editor of your choice. You’ll have to copy-paste its whole content, including the BEGIN header and END footer into the corresponding field on your SSL vendor’s ordering page.

Unzip and Extract SSL Certificate & Other Files

This section will explore how to unzip and extract the SSL certificate and other files. Once your CSR has been verified, the certificate authority (CA) will dispatch your SSL certificate and supplementary installation files to your registered email address in a .zip folder.

Extract all the files after unzipping the folder, and verify that you possess the following files:

  • The .crt file (Primary Certificate)
  • The .ca-bundle file (Intermediate Certificate)
  • The Private Key File

Install the SSL Certificate on the Nutanix Cluster Server

Follow the steps mentioned below:

  • Login in the Nutanix Console.
  • Navigate to the Settings page.
  • Click the down arrow inside the gear icon, and from the list, select SSL Certificates.
  • In the SSL Certificate dialog box, click Replace Certificate.
  • Click the radio button adjacent to Import Key and Certificate, then click Next.
  • In the SSL Certificate window, do below actions:
    • From the Private Key Type list, select RSA 2048 bit.
    • Under the Private Key section, click Choose file and select the private key.
    • Under the Public Certificate section, click Choose file and select the public certificate.
    • Under the CA Certificate Chain, click Choose file and select the private key.
  • Click Import Files to initiate the SSL certificate import process.

Test the Installation

To confirm the successful deployment of your SSL certificate on the Nutanix Cluster server, it is paramount to test the installation status. A practical tool for this purpose is the SSL Checker, which allows you to identify possible vulnerabilities or errors in your SSL configuration.

Secure your Site Now

Enable HTTPs on your Website by Purchasing SSL, Generate CSR and Install on your Web Server.

Starts at Just $3.99/Yr
Janki Mehta

Janki Mehta

Janki Mehta is a Cyber-Security Enthusiast having 7+ years of experience and knowledge about Encryption, Digital Certificates and Online Security, She helps online users to stay safe and protect their online presence. Explore SSL Errors, Installation Guide and Security Tutorials for Safe Browsing and Web Security Experience.