MSA Storage
cancel
Showing results for 
Search instead for 
Did you mean: 

MSA 2040: Change the https certificate

 
SOLVED
Go to solution

MSA 2040: Change the https certificate

Hello,

 

Is it possible to change the https certificate to a custom certiticate that I created my self? I have a local CA in my domain which I sing certificates with and I wanted to generate a valid certificate for my MSA 2040 so I don't get the warning each time I login via the web GUI.

 

Thank,

-Patric

4 REPLIES 4
Solution

Re: MSA 2040: Change the https certificate

The answer was to use ftp and put the cert and key-files in the root named cert-file and cert-key-file.

For example:

 

put certificate.crt cert-file
put certificate.key cert-key-file

 

Emad Omar
Regular Advisor

Re: MSA 2040: Change the https certificate

Could you please advise from where I can get cert and key-files?
We have a local CA in my domain and need to create customized certificate.
Shawn_K
HPE Pro

Re: MSA 2040: Change the https certificate

Hello Emad,

You will have to work with you CA to create the customer certificates that will be specific to your domain. HPE cannot provide you those custom certificates.

Please refer to the SMU Guide for general instructions for installation of the certificates.

Cheers,
Shawn

Accept or Kudo

Dardan
Member

Re: MSA 2040: Change the https certificate

A detailled blog post on this : https://storcom.com/installing-ca-ssl-certificates-on-hpe-msa-array/

1) Request a certificate at your CA manager, it will be probably delivered as a .pfx file

2) Extract the .pfx file into two separate PEM files

- The certificate .cer file

- The private .key file (exported with a pass phrase)

3) Decrypt/Remove the passphrase from the .key file

4. Edit the .cer file you extracted at step 2) and add your company's intermediate certificate and the root certificate. The final .cer file should look like:

  1. -----BEGIN CERTIFICATE-----
    Array’s certificate
    -----END CERTIFICATE-----
  2. -----BEGIN CERTIFICATE-----
    The intermediate certificate chain
    -----END CERTIFICATE-----
  3. -----BEGIN CERTIFICATE-----
    The ROOT CA certificate
    -----END CERTIFICATE-----

5. Upload the .cer and the private .key file

put <certificate file name> cert-file

put <key file> cert-key-file

Hope this helps.