Technical data
Security Certificates
© 2012 Meru Networks, Inc. Configuring Security 145
Figure 16: Sample Certificates Returned by CA (Server, Intermediate, and Root)
Note:
Generate Certificate Signing Requests (CSR) directly on the controller using
the Web UI.
Generate a CSR on a Controller
To create a Certificate Request, follow these steps from the controller that needs a
certificate:
1. Click Configuration > Certificate Management > Server Certificates. The Server
Certificate window displays.
2. Click Add. The Certificate Add window displays.
3. Provide the requested information in this window.
4. Click Apply.
The CSR is generated and appears in a window.
5. Either copy this Certificate PEM for pasting into a submittal form or click Save to
save the CSR as a file.
6. Click Close.
7. Send the CSR to the Certificate issuer to be processed. If the CA asks for the
operating system type, select Open SSL (if available) or Other.
The Certificate entry now displays in the Server Certificates page under “Pending
CSR.” This entry will be matched to the certificates when they arrive and imported,
ensuring that the controller that requested certificates is the only one to use those
certificates.
Import the Certificate
Remember that you MUST add the Root Certificate and ALL Intermediate Certificates
in the chain of trust before you install the signed Server Certificate; if you don’t
install in order, you get an error.
To import a Trusted Root CA and the entire chain of trust that you receive from a CA,
follow these steps: