Generating a new self-signed certificate
If your current self-signed certificate expired or is about to expire, you can generate a new self-signed certificate for the system by using the management GUI or command-line interface (CLI).
About this task
In the management GUI, select
and select self-signed certificate and complete the form.Use the following steps to generate a self-signed certificate in the command-line interface:
Procedure
To create a self-signed certificate that uses RSA 2048 key type and expires in one year, enter
the following command:
chsystemcert -mkselfsigned -keytype rsa2048 -validity 365
After
the self-signed certificate is created, it is automatically installed on the system. Other values can be specified such as country, organization, or common name. View the details on this command for complete descriptions of all parameters.