DataPower

 View Only

Creating certificates with SAN fields on DataPower

  • 1.  Creating certificates with SAN fields on DataPower

    IBM Champion
    Posted Sun March 21, 2021 10:43 PM
    We all know that DataPower is a great place to implement security gateways and lots of other stuff, and it has some great cryptographic capabilities.

    But it doesn't make it easy to create certificates with extensions like Subject Alternative Name or basic constraints. The crypto tools Web UI page doesn't implement anything more than the Distinguished Name and key details.

    Our new blog post walks you through how to use the keygen command line with a config-file parameter to generate certificates that meet your needs, rather than having to generate the requests outside of DataPower.

    Create certificates with SAN fields on DataPower
    Syntegrity remove preview
    Create certificates with SAN fields on DataPower
    DataPower appliances are fantastic for implementing secure gateways to your systems, even apart from the gateway enforcement capability they provide for API Connect. Implementing TLS server endpoints and client connections on DataPower requires certificates and private keys. Ideally, the keys should be generated on board the appliance and never exported.
    View this on Syntegrity >



    ------------------------------
    Neil Casey
    Senior Consultant
    Syntegrity Solutions
    Melbourne, Victoria
    IBM Champion (Cloud) 2019-21
    ------------------------------