The local CA signs and verifies the server certificate and may also sign client certificate requests. Follow these steps to create and install a local CA.
-
Go to the Security tab.
-
Click on the Certificates option listed under Certificates & CAs.
-
Scroll down to the Create Certificate section.
-
Enter a Certificate Authority Name and a Common Name. These may have the same value, such as ESKMLocalCA.
-
Enter your Organizational information.
-
Select the Algorithm (for example, RSA-2048).
-
Select Self-signed Root CA and enter the CA Certification Duration and Maximum User Certificate Duration. These values determine when the certificate must be renewed and should be set in accordance with your company's security policies. The default value for both is 3650 days or 10 years.
-
Click on Create.
Create Local CA