Certificates

Access the Cloud Defender and Managed WAF Certificates pages in the Alert Logic console under the Configurations tab, by clicking either the Network IDS or WAF subheading. Certificates and Keys is in the left navigation panel.

Manage security certificates

View security certificates

Managed WAF and Threat Manager customers with administrative privileges can view security certificates in the Alert Logic console.

To view security certificates:

  1. Access the Certificates & Keys page.
  2. If you manage more than one customer, in the Customer drop-down menu, select the customer, and then click Go.
  3. In the Configuration list, to the right of the certificate you want to see, click View.

Upload security certificates

Managed WAF and Threat Manager customers with administrative privileges can upload security certificates in the Alert Logic console.

After you upload your certificate, the Alert Logic Provisioning team performs a back-end installation to validate your certificate.

To upload security certificates:

  1. Access the Certificates & Keys page.
  2. If you manage more than one customer, in the Customer list, select the customer, and then click Go.
  3. Click Upload Certificate.
  4. In the Name field, type a unique name.

Managed WAF website certificate names must be fully qualified domain names (FQDN).

You cannot change the certificate name after you enter and save it.

  1. Depending on your need, select either SSL Decryptor or WSM Website.
  2. (Optional) In the IP address field, enter the server-specific IP address to which you want the certificate applied.
  3. (Optional) In the Passphrase field, enter a passphrase (If you have a passphrase associated with a PEM private key, use that passphrase).
  4. In the Confirm Passphrase field, reenter your passphrase, if applicable.
  5. To upload an SSL Decryptor certificate, browse to select your file.
  6. To upload a WSM Website certificate, select either PKCS12 or PEM, and then browse to select your file(s).
  7. Click Save.

Once uploaded, your certificate displays on the Certificates page, under the Configuration drop-down menu.

Modify security certificates

Managed WAF and Threat Manager customers with administrative privileges can modify security certificates in the Alert Logic console. In the edit security certificates page, you can change an IP address, set a passphrase, remove a passphrase, or upload a new SSL Decryptor or WSM Website certificate. Depending on the certificate type, whether WSM PEM, WSM PKCS12, or SSDL PEM, the options for modification differ.

To modify security certificates:

  1. Access the Certificates & Keys page.
  2. If you manage more than one customer, in the Customer drop-down menu, select the customer, and then click Go.
  3. In the Configuration list, to the right of the certificate you want to change, click edit.
  4. (Optional) In the IP address field, enter the server-specific IP address to which you want the certificate applied. If you want to specify more than one IP address, separate the addresses with a comma.
  5. Select either No change to current passphrase, Remove current passphrase, or Change current passphrase.
  6. Select one of following options:
    1. Change the current passphrase:
      • In the Passphrase field, enter a passphrase. (Optional) If you have a passphrase associated with a PEM private key, use that passphrase.
      • In the Confirm Passphrase field, reenter your passphrase, if applicable.
    2. Edit an SSL Decryptor certificate:
      • Browse to select your file.
    3. Edit a WSM Website certificate:
      • Select either PKCS12 or PEM, and browse to select your file(s).
  7. Click Save.

Delete security certificates

Managed WAF and Threat Manager customers with administrative privileges can delete security certificates in the Alert Logic console.

When you delete a certificate, you permanently remove it.

To delete security certificates:

  1. Access the Certificates & Keys page.
  2. If you manage more than one customer, in the Customer list, select the customer, and then click Go.
  3. In the Configuration list, to the right of the certificate you want to remove, click delete.
  4. Click either Yes or No.