Certificates - Generate auto-signed

Generate a certificate

  1. In the certificate management interface, in the Generate a new certificate section, complete the following fields:

    • Certificate ID: enter a unique and definitive identifier, which can be made up of letters, numbers and the underscore ‘_’ as a separator, up to 64 characters long;

    • Primary hostname: enter the host name of the http server in this field;

    • Alt. names: enter the other names contained in the certificate using a semi-colon ‘;’ as a separator.
      N.B.: for some print devices, the address with which they communicate with Watchdoc must appear either in the Primery hostname field or in the Alt. Names;

    • Key size: from the list, select the key size corresponding to the certificate;

    • Signature Alg.: from the list, select the hash algorithm used to sign the certificate;

    • Is a certification authority: tick the box if the certificate has this status. For security reasons, we do not recommend the use of such certificates;

  2. Click the button Create new self-signed certificate:

     

    è Watchdoc generates a CSR file (.pem format) and displays the newly generated certificate in the Certificates list. The ‘is self-signed’ icon is displayed in the Is signed column to the right of the certificate. If you wish, you can have this certificate signed by your certification authority.

Have the certificate signed

  1. From the list Certificates, click on the button to the right of the certificate to be signed;

  2. in the interface Sign certificate > Step1, click the button Download the CSR:

     

  3. download the CSR file generated by Watchdoc (.pem) from the Download folder (by default);

  4. Step2: submit this .pem file to your certification authority (which will sign it using base 64 encoding);

  5. Save the signed certificate in your working environment;

  6. Step3: click on the Choose a file button to select the certificate file in your working environment;

  7. then click on the Complete certificate button:


     

èIn the list, the ‘Certificate signed’ logo is displayed next to the certificate that has just been signed.
You can then designate it as the current certificate.

Designate the certificate as a current certificate

  1. In the list of certificates, click on the button to the right of the certificate you have just signed;

  2. Check that the green tick is displayed to the right of the certificate designated as the current certificate.

èYou can then delete the other certificates if you wish.