Install Custom Certificate
GigaVUE V Series Node, GigaVUE V Series Proxy, and UCT-V Controllers have default self-signed certificates installed. The communication between GigaVUE-FM and the fabric components happens in a secure way using these default self-signed certificates, however you can also add custom certificates like SSL/TLS certificate to avoid the trust issues that occurs when the GigaVUE V Series Nodes, GigaVUE V Series Proxy, or UCT-V Controllers run through the security scanners.
You can upload the custom certificate in two ways:
- Upload Custom Certificates using GigaVUE-FM
- Upload Custom Certificate using Third Party Orchestration
Upload Custom Certificates using GigaVUE-FM
To upload the custom certificate using GigaVUE-FM follow the steps given below:
- Go to Inventory > Security > Custom SSL Certificate. The Custom Certificate Configuration page appears.
- On the Custom Certificate Configuration page, click Add. The New Custom Certificate page appears.
- Enter or select the appropriate information as shown in the following table.
Field
Action Certificate Name
Enter the custom certificate name.
Certificate
Click on the Upload Button to upload the certificate.
Private Key
Click on the Upload Button to upload the private key associated with the certificate.
- Click Save.
You must also add root or the leaf CA certificate in the Trust Store. For more detailed information on how to add root CA Certificate, refer to Trust Store.
The certificates uploaded here can be linked to the respective GigaVUE V Series Node, GigaVUE V Series Proxy, and UCT-V Controller in the Fabric Launch Configuration Page. Refer to Configure GigaVUE Fabric Components in GigaVUE-FM topic in the respective cloud guides for more detailed information.
Note: The minimum value for the authentication key encryption length provided during the key generation is 2048.
Upload Custom Certificate using Third Party Orchestration
You can also upload custom certificates to GigaVUE V Series Nodes, GigaVUE V Series Proxy, and UCT-V Controller using your own cloud platform at the time of deploying the fabric components. Refer to the following topics on more detailed information on how to upload custom certificates using third party orchestration in the respective platforms:
For integrated mode:
- Configure GigaVUE Fabric Components in AWS
- Configure GigaVUE Fabric Components in Azure
- Configure GigaVUE Fabric Components in OpenStack
For generic mode: