If 2048 SSL certificate is required on a Cloud Service Appliance, you will need to purchase such certificate from a third party. See SSL Certificate Requirements here: SSL Certificate Requirements for LANDESK Cloud Service Appliance.
On the Cloud Services Appliance go to Manage LDMG certificates.
Click Create CSR. Enter info and click Display to get CSR.
Fill out the signing request with your information, see example below:
*Note - SSL certificate must be purchased in SHA-1. Some vendors may be phasing out SHA-1 by January 1st, 2017, so purchasing more than 2 years may not give the option for SHA-1.
Download SSL cert info from vendor. Copy the certificate info. Open a web console to the CSA, go to Manage LDMS certificates, click Add LDMG certificate and paste the SSL text/response document into the box. Click save.
Remove the self-signed default SSL certs in LDMG Certificates and reboot the Cloud Service Appliance. Log back into the CSA. Under LDMG certificates, you should see 3 certs, the request, the end entity and the self-signed one.
Note: If you put in a SHA-2 or SHA-256 you will not be able to log back into the gateway. It is not supported. To fix this, go onto the gateway itself, press Alt+F1 which will open a console window.
- Type sudo su
- Type the admin password
- cd /root/.certs
- Delete the 2 certificates with the rm command.
- Reboot, and you should be able to login to the CSA again.
- Make sure to only use SHA-1 certificate so this doesn't happen.