Certificate List Page
Navigate to Configure > SSL Certificates in the navigation pane. The SSL Certificates page is displayed, with a list of all certificates associated with the currently selected Account.
Action icons (view, edit, etc.) are displayed on the right side of each certificate’s row. MediaVault works so you can implement hashes within your own applications
Depending on a certificate’s state, additional or fewer action icons may be present. All icons and capabilities are explained later in these instructions.
Summary Information
The SSL Certificates for list provides this information:
Total of each type on the right side of the gray header bar. Possible types:
- new
- pending publication
- published
- updated
- expired
- withdrawn
Detail Information
Each certificate in the list provides this information:
| Item | Description |
|---|---|
| Certificate name | Customer-assigned certificate name |
| Expiration Date | Certificate expiration date, extracted from the certificate’s “Not After ” element |
| Content type | Certificate purpose; possible values: - single server - SAN - wildcard |
| Fingerprints | List of domains covered in the certificate |
| PEM file | Certificate pem file name, if the certificate is PEM-encoded |
| Action controls | On right side of row; allow you to view, edit, publish, withdraw, and delete a certificate |
| Certificate state and version, date, user | To the right of the action controls on the right side of each row. Indicates the certificate version, date the certificate was created or updated, and user that created/updated the certificate |
Working with Certificates
You can create, view, edit, publish, withdraw, and delete your own Server Name Indication (SNI) SSL certificates in the Edgio Network.
The actions allowable depend on the state of a certificate.
- If the certificate is not published, you can edit it, delete it, or publish it.
- If the certificate is published, you can withdraw it or edit it.
- If the certificate is withdrawn, you can edit it or delete it.
- If the certificate is not published, you can edit it, delete it, or publish it.
- If the certificate is published, you can withdraw it or edit it.
- If the certificate is withdrawn, you can edit it or delete it.
Creating a New Configuration
Creating a new configuration includes uploading a certificate to Control; however, this process is insecure because the certificate could be hijacked through a malicious browser extension. advises that you open the page in an incognito window to create the certificate because incognito pages block all browser extensions.
- Click the + new button at the top of the screen.
- Fill out fields. All fields except Intermediate certificates are required. See Certificate Field Reference for details.
- Click the Create button at the bottom of the screen.
- The system verifies the contents of all uploaded files and displays errors if verification is unsuccessful.
- If all fields pass validation:
- the certificate is added to the list
- the certificate’s status (‘New’), and version (v1) is added to the controls on the right side of the certificate’s row along with the creation date and your user
- Publish the certificate. See Publishing a Certificate.
Viewing Certificate Details
You can view additional certificate details that are not displayed in the list of certificates.
-
On the certificate list page, click the View (eye) icon for the certificate you want to examine.
-
Details are displayed on a new page.
From this page, you can also take other options depending on the certificate status:
- If the certificate is not published, you can edit it, delete it, or publish it.
- If the certificate is published, you can withdraw it or edit it.
See the following sections for instructions:
- Editing a Certificate
- Publishing a Certificate
- Deleting a Certificate
- If the certificate is not published, you can edit it, delete it, or publish it.
- If the certificate is published, you can withdraw it or edit it.
See the following sections for instructions:
- Editing a Certificate
- Publishing a Certificate
- Deleting a Certificate
Editing a Configuration
Use the edit icon to edit a configuration. Depending on the published state of the configuration, the edit icon has one of two tooltips:
-
Update/Rollback: Modify a published configuration.
-
Update: Modify a non-published configuration.
The two uses are essentially the same; both allow you to edit the configuration.
To edit a configuration:
-
Click the edit (pencil) icon for the certificate you want to modify. Although the Customer certificate and Certificate private key file fields are empty, the configuration defaults to the files contained in the configuration before you opened it in edit mode.
-
Make the desired modifications. See Certificate Field Reference for details.
-
Click the Update button.
-
If you changed any upload files, Control validates the files.
-
If all fields pass validation:
- The changes are saved.
- The certificate is added to the list.
- The certificate’s date and version are incremented.
- A popup message is displayed, reminding you that although you have updated the configuration, you still need to publish it.
-
Publish the certificate. See Publishing a Certificate.
Each time you modify a configuration, its version is incremented.
Publishing a Certificate
When you publish a certificate, it gets pushed to the edge.
Control does not allow you to publish a certificate with domains covered by other published certificates. If you attempt to do so, you receive an error.
- Click the Publish (up arrow) icon for the certificate you want to publish.
- Click OK in the dialog that prompts you to confirm.
- The system starts a workflow that publishes the certificate to the edge. It normally takes about 6 hours to propagate changes.
Withdrawing a Certificate
When you withdraw a configuration it gets removed from the edge.
- Click the Withdraw (left-pointing arrow) icon for the certificate you want to delete.
- Click OK in the dialog that prompts you to confirm.
- The system starts a workflow that withdraws the certificate. It normally takes about 6 hours to propagate changes.
Deleting a Certificate
If a certificate has been published, you must withdraw it before you delete it. See Withdrawing a Certificate.
- Click the Delete (rubbish bin) icon for the certificate you want to delete.
- In the resulting dialog, enter the certificate name as instructed, then click the Delete button.
- The system deletes the certificate and starts a workflow that removes the certificate from the edge.
Certificate Field Reference
| Field | Description |
|---|---|
| Certificate name | Name of the certificate to create; maximum 100 characters |
| Content Type | Type of content that the certificate encrypts; possible values: - Regular - Will use General Pool VIPs. Always select this option. - LargeObject - Blue The value you select must match the collection of VIPs that can serve the shortname. For example, General Pool shortnames can only be served from General Pool VIPs. If you set a certificate on a shortname but you don’t select ‘Regular’, the certificate will not work. |
| Customer certificate | Use this field to upload the certificate. Must be an X.509v3 ASCII Base64 PEM-encoded type and not password-protected. Customers that don’t use that encoding must use Open SSL commands to convert their type to the required type. This file almost always contains intermediate certificates. If not, use the Intermediate certificate field to upload the desired files. |
| Intermediate certificate | In most cases, this field should be left empty; intermediate certificate(s) will be derived from the provided certificate by default. Only upload the intermediate certificate(s) here if you know that the certificate encoding in the Customer certificate field does NOT already include intermediate certificate information. |
| Certificate private key file | Use this field to upload the private key. The key must be X.509v3 ASCII Base64 PEM-encoded and not password-protected. |