The customer needs their browser to trust SpanVA and wants to configure SpanVA with a self signed certificate or
You can use these procedures to establish trust for test installations and proof-of-concept testing. Important: For production SpanVA deployments, we strongly recommend that you use a well-known CA signed certificate or a certificate signed by your trusted enterprise CA.
1. Create the certificate and key Open a terminal window and use the following OpenSSL command to create a self-signed certificate and key (all on one line):
openssl req -x509 -sha256 -nodes -days 365 -newkey rsa:2048 -keyout example.key -out example.crt
After you issue this command, OpenSSL prompts you for more information, then creates the certificate and key pair example.crt and example.key.
Note: When OpenSSL prompts you for a common name, enter the SpanVA FQDN (if configured) or IP address.
2. Import the certificate as the trusted root CA
3. Import the certificate into SpanVA