Use a commercial root Certificate of Authenticity

If you are using a commercial root CA, you simply need to create a Certificate Signing Request (CSR) and send it to the CA.

What to know

You can create a CSR using the OpenSSL toolkit or any other SSL tool. Contact your commercial root CA for details.

A commercial root CA creates two files.
  1. textml_csr.pem is the Certificate Signing Request (CSR)
  2. textml_cert_privatekey.pem is a private key associated with the CA and you must install this key on the IXIA TEXTML Server

To create a CSR:

Steps

  1. In the openssl directory, run the following command. 
    openssl req -new -nodes -keyout ./CA/private/textml_cert_privatekey.pem -out ./CA/newcerts/textml_csr.pem -config ./openssl.cnf
  2. Enter the required information.
  3. Send the CSR file (that is, textml_csr.pem) to the commercial CA.

Results

After verification, the commercial CA will return a signed certificate. The examples in this document assume that the signed certificate is called textml_signed_cert.pem.

This completes the step of using a commercial root CA. Proceed to Step 2: Install a signed CA on IXIA TEXTML Server.