Custom CA

Prerequisites

The prerequisites for configuring Custom CA account in AppViewX are as follows:
  • A logo to use it for the custom CA.
  • An optional CA certificate and key to be used as a root certificate.

Configuring Custom CA

  1. Go to (Menu) > CERT+ > ADMINISTRATION > Certificate Authority.
  2. From the displayed CA, Select Custom.
  3. Click the Configure Now button or +Add icon from the middle or top-right of the page respectively.
    The Custom home page is displayed.
  4. Update the following details in the General Information section as described in the table:
    Table 1. General Information - Field Description Table
    Fields Description
    *Custom CA Name A unique name to identify the CA name. No special characters allowed.
    *Upload Custom CA Logo Upload a logo for the custom CA. This logo will appear in the product representing the custom CA.
    Custom CA Certificate Upload a certificate for the custom CA. This certificate will become the root certificate. The <.pfx> and <.p12> are certificate types are supported.
    *: Mandatory fields
  5. Once the logo and certificate are uploaded, the entered CA will appear in the CA list with the logo presented.
  6. Once the logo is added, users can click Configure Now to input the CA details.
  7. Update the following details in the General Information section as described in the table:
    Fields Description
    *Name Client authentication certificate for API communication.
    Data Center (AppViewX's CA agent) Select the data center through which the CA communication needs to happen.
    *: Mandatory fields
  8. Update the following details in the ROOT CSR parameters section as described in the table:
    Table 2. Root CSR - Field Description Table
    Fields Description
    Common Name The common name of the root certificate.
    • Use Asterisk (*) for the host part of the FQDN to enforce the domain. For example, *.domain.com will only allow users to request certificates with domain domain.com.
    • Allowed Special Characters: Asterisk (*), Hyphen (-), Period (.)
    Algorithm Type of the root certificate.
    Hash Function The hash function for the root certificate.
    Organization Unit Name of the Organisation unit.
    Key Length Key length for the root certificate.
    Organization Organization attribute for the root certificate.
    Locality Locality attribute for the root certificate.
    State or Province State attribute for the root certificate.
    Country Country attribute for the root certificate.
    Email Address Email address for the root certificate.
    *: Mandatory fields
  9. Update the following details in the Root Validity section as described in the table.
    Fields Description
    *Start Date Start date of the certificate issuance.
    *End Date End date of the certificate issuance.
    *: Mandatory fields
  10. Click Save.
    Once the setting is saved, the user will be directed to the root certificate submission holistic view as below.
  11. Users can submit and fetch the root certificate.
  12. On the CA setting page user can see the status of the created setting as shown below.