Step 2: Submit the CSR files

After you create the certificate signing request (CSR) files, send the files to a certificate authority (CA).

In this task, you send the generated CSR files to a CA to receive signed certificates for the controllers in the storage array.

DE Series systems require PEM format (Base64 ASCII encoding) for signed certificates, which includes the following file types: pem, .crt, .cer, or .key.

  1. Locate the downloaded CSR files.
  2. Submit the CSR files to a CA (for example, Verisign or DigiCert), and request signed certificates in PEM format.
    CAUTION:
    After you submit a CSR file to the CA, do NOT regenerate another CSR file. Whenever you generate a CSR, the system creates a private and public key pair. The public key is part of the CSR, while the private key is kept in the system's keystore. When you receive the signed certificates and import them, the system ensures that both the private and public keys are the original pair. If the keys do not match, the signed certificates will not work and you must request new certificates from the CA.

When the CA returns the signed certificates, go to Step 3: Import signed certificates for controllers.

Parent topic: Use CA-signed certificates for controllers
Previous topic: Step 1: Complete CSRs for the controllers
Next topic: Step 3: Import signed certificates for controllers