Omitir para ir al contenido principal
  • Hacer pedidos rápida y fácilmente
  • Ver pedidos y realizar seguimiento al estado del envío
  • Cree y acceda a una lista de sus productos

How to Create a Domain or Third-Party Certificate for Dell Data Security

Resumen: A certificate may be created for a Dell Data Security (formerly Dell Data Protection) server using these instructions.

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.

Instrucciones

A Dell Data Security (formerly Dell Data Protection) server may use a certificate that is provided by a third-party or internal certificate authority (CA).


Affected Products:

  • Dell Security Management Server
  • Dell Security Management Server Virtual
  • Dell Data Protection | Enterprise Edition
  • Dell Data Protection | Virtual Edition

Affected Versions:

  • v8.0.0 to Later

To use a CA certificate, the Dell Data Security server requires:

  • That a certificate signing request (CSR) is submitted to the CA.
  • A CA signed certificate (.cer) and private key to be converted to a Personal Information Exchange Format (PFX).

Click the appropriate action for more information.

  1. Right-click the Windows Start menu and then click Run.
    Run
  2. In the Run UI, type MMC and then press OK.
    Run UI
  3. From the Microsoft Management Console, select File, and then Add/Remove Snap-in.
    Add/Remove Snap-in
  4. Select Certificates and then click Add.
    Certificates
  5. Select Computer account and then click Next.
    Computer account
  6. With the Local computer selected, click Finish.
    Local computer
  7. Click OK.
    Adding Certificates snap-in
  8. In Console Root, expand Certificates.
    Expanding Certificates
  9. Right-click Personal, select All Tasks, Advanced Operations, and then click Create Custom Request.
    Create custom request
  10. Click Next.
    Before You Begin
  11. Under Custom Request, select Proceed without enrollment policy and then click Next.
    Select Certificate Enrollment Policy
  12. From the Custom request menu:
    1. Select template: (No template) Legacy key
    2. Select format: PKCS #10
    3. Click Next.
    Custom request
  13. Expand Details and then click Properties.
    Certificate Information
  14. In the General tab, populate the Friendly name and Description.
    General tab
  15. In the Subject tab:
    1. From the Subject name, populate and then Add:
      1. Common name (CN)
      2. Organization
      3. Locality
      4. State
      5. Country
    2. From the Alternative name, populate the Dell Data Security server DNS and then click Add.
    Subject tab
  16. In the Private Key tab:
    1. Expand Cryptographic Service Provider
    2. Select Microsoft RSA SChannel Cryptographic Provider
    3. Expand Key options
    4. Select key size: 2048
    5. Check Make private key exportable
    6. Click OK
    Private Key tab
  17. Click Next.
    Certificate Information
  18. Browse to a location to save the file and then click Finish.
    Destination folder
    Note: The CSR output can now be submitted to a third-party provider or internal certificate authority (CA).
  1. Bring the CA signed certificate (.cer) to the machine where the CSR originated from.
  2. Right-click the .cer file and then click Install Certificate.
    Install Certificate
    Note: certtest.cer is an example certificate name used in the example image. The certificate name may differ in your environment.
  3. In the Certificate Import Wizard, select Local Machine and then click Next.
    Local Machine
  4. Select:
    1. Select Place all certificates in the following store.
    2. Click Browse.
    3. Click Personal.
    4. Click OK.
    5. Click Next.
    Certificate Store
  5. Click Finish.
    Completing the Certificate Import Wizard
  6. Click OK.
    Successful import
  7. Right-click the Windows Start menu and then click Run.
    Run
  8. In the Run UI, type MMC and then press OK.
    Run UI
  9. From Microsoft Management Console, select File, and then Add/Remove Snap-in.
    Add/Remove Snap-in
  10. Select Certificates and then click Add.
    Certificates
  11. Select Computer Account and then click Next.
    Computer account
  12. With the Local computer selected, click Finish.
    Local computer
  13. Click OK.
    Adding Certificates snap-in
    Note: Ensure the root certificate of the third-party provider or internal CA is installed in trusted root certificates.
  14. Go to Certificates, Personal, and then Certificates.
    Certificates
  15. Right-click the imported certificate (step 5), click All Tasks, and then click Export.
    Export
  16. Click Next.
    Certificate Export Wizard
  17. With Yes, export the private key selected, click Next.
    Exporting the private key
  18. From the Export File Format menu:
    1. Select Personal Information Exchange - PKCS #12 (.PFX).
    2. Check Include all certificates in the certification path if possible.
    3. Check Export all extended properties.
    4. Click Next.
    Export File Format
  19. Enter and confirm the Password. Once populated, click Next.
    Security
  20. Browse to a location to save the .pfx and then click Next.
    File to export
  21. Click Finish.
    Completing the Certificate Export Wizard
  22. Click OK.
    Successful export
  23. If using:
    • Dell Security Management Server Virtual (Formerly Dell Data Protection | Virtual Edition), go to Step 24
    • Dell Security Management Server (Formerly Dell Data Protection | Enterprise Edition), the .pfx creation process is completed.
  24. To successfully upload a .pfx, Dell Security Management Server Virtual requires:
    • A completed .pfx
    • A third-party FTP (file transfer protocol) client
      • Examples of an FTP client include (but are not limited to):
        • Filezilla
        • WinSCP
        • FireFTP
    Note:
    • Dell does not endorses or support any listed third-party product. The listed clients are meant to be an example of potential products that you can use. Contact the product’s manufacturer for information about setup, configuration, and management.
    • Your FTP client UI may differ from the below screenshot examples.
  25. Launch the FTP client.
  26. In the FTP client, Log in with an FTP user to the Dell Security Management Server Virtual.
    FTP client login
    Note: An FTP user must be created within the Dell Security Management Server. Reference How to Create an FTP User in Dell Security Management Server Virtual for more information.
  27. Go to /certificates/.
    Certificate directory
  28. Move the .pfx from where it was saved (Step 20) to /certificates/.
    Move the .pfx
  29. Close the FTP client.

To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.

Productos afectados

Dell Encryption
Propiedades del artículo
Número del artículo: 000125477
Tipo de artículo: How To
Última modificación: 18 dic 2024
Versión:  11
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.