Comments
-
Thank you for your thorough response. I don't see any way to rotate or otherwise manage public vs private keys within the Sonicwall certificates so I'll just stick to generating a new CSR and rekey with our SSL provider for now. I appreciate your help.
-
So just to clarify the rest of this - there's no point in getting a 3 year SSL certificate and reissuing the public key annually, should just be creating a new cert every year? Thanks and my apologies, this is the first time I had a new key reissued to me automatically so I wasn't sure how to handle it.
-
Alright I feel like an idiot. The CA can be anything. The real DNS name with domain (FQDN) goes in the Common Name field.
-
Thanks and sorry I'm not getting this. When I do "Create new signing request" I have to put the "Certificate Alias" first. I've always used my DNS name there. I don't have a place to change the "name" that I'm aware of?
-
Thanks for the response. But doesn't the CSR have to use the DNS name? I can't change the DNS entry for this every time I update the cert, that doesn't make sense.