Link Search Menu Expand Document

SSL CA Certificates Tab

Configuration > Overlays & Security > SSL > SSL CA Certificates

This tab lists any installed Certificate Authorities (CA) that the browser uses to validate up the chain to the root CA.

If the enterprise certificate that you used for signing substitute certificates is subordinate to higher level Certificate Authorities (CA), you must add those CA certificates. If the browser cannot validate up the chain to the root CA, it will warn you that it cannot trust the certificate.

TIP: For a historical matrix of EdgeConnect and Orchestrator security algorithms, click here.

SSL CA Certificates Edit Row

If the enterprise CA certificate you use for signing substitute certificates is subordinate to higher level Certificate Authorities (CA), you must add those CA certificates here.

Those same CA certificates must also be present in the browser. If the browser cannot validate up the chain to the root CA, it will warn you that it cannot trust the certificate.

  • Use this page to directly load the CA certificate into the appliance.

    • You can add either a PFX certificate (generally, for Microsoft servers) or a PEM certificate.

    • The default is PEM when PFX Certificate File is deselected.

  • EdgeConnect supports:

    • X509 Privacy Enhanced Mail (PEM), Personal Information Exchange (PFX), and RSA key 1024-bit and 2048-bit certificate formats.

    • SAN (Subject Alternative Name) certificates. SAN certificates enable sharing of a single certificate across multiple servers and services.

TIP: For a historical matrix of EdgeConnect and Orchestrator security algorithms, click here.


Back to top

© Copyright 2024 Hewlett Packard Enterprise Development LP.

For third-party trademark acknowledgements, go to Trademark Acknowledgements. All third-party marks are property of their respective owners.

To view the end-user software agreement, go to HPE Aruba Networking EULA.

Open Source Code:

This product includes code licensed under certain open source licenses which require source compliance. The corresponding source for these components is available upon request. This offer is valid to anyone in receipt of this information and shall expire three years following the date of the final distribution of this product version by Hewlett Packard Enterprise Company. To obtain such source code, please check if the code is available in the HPE Software Center at https://myenterpriselicense.hpe.com/cwp-ui/software but, if not, send a written request for specific software version and product for which you want the open source code. Along with the request, please send a check or money order in the amount of US $10.00 to:

Hewlett Packard Enterprise Company
Attn: General Counsel
WW Corporate Headquarters
1701 E Mossy Oaks Rd Spring, TX 77389
United States of America