Importing root certificates

Virtual Storage Platform One SDS Block System Administrator Guide

Version
1.16.x
Audience
anonymous
Part Number
MK-24VSP1SDS001-03

(Bare metal) In the browser used in the VSP One SDS Block Administrator, and CLI, root certificates that prove the validity of the certificates issued by the default trusted certification authority have been imported. In contrast, if a root certificate is issued by the Certificate Authority in your organization, you need to import the root certificate manually. The handling of the root certificates is different among the REST API, CLI, and browser.

(Cloud) By default, root certificates that prove the validity of the certificates issued by a trusted certification authority have been imported to web browsers, CLI, and the VSP One SDS Block installer used by VSP One SDS Block Administrator. In contrast, if a root certificate is issued by the Certificate Authority in your organization, you need to import the root certificate manually. How to handle the root certificate differs between the REST API, CLI, browser, and VSP One SDS Block installer.

Note:

The fields in the extended profile of an X.509 certificate support the following fields as specified in RFC 5280:

  • Basic Constraints

  • Key Usage

  • Subject Key Identifier

  • Authority Key Identifier

  • Certificate Policies

  • Subject Alternative Name

  • Name Constraints

  • Policy Constraints

  • Extended Key Usage

  • Inhibit anyPolicy

The following procedure describes the procedure for importing root certificates into the controller node.