Generating a CSR Parent topic

When Deep Discovery Web Inspector determines that network traffic matches an HTTPS decryption rule, the HTTPS traffic is decrypted and inspected and action taken according to the configured policy rules. You can generate a CSR to request a certificate from a Certificate Authority. You can import this certificate into an HTTPS decryption rule. The certificate is used to re-sign the website certificate.

Procedure

  1. Go to PolicyDecryption Rules.
  2. Click Generate CSR to generate the CSR file.
    The Generate CSR window opens.
  3. Specify the following parameters:
    Option
    Description
    Common Name
    The Common Name (CN) is typically composed of Host + Domain Name. It can also be the name of the server.
    Country Code
    The two-letter International Organization for Standardization (ISO) format country code for where your organization is legally registered.
    State/Province
    Name of the state or province where your organization is located. Do not abbreviate.
    Locality
    Name of the city where your organization is registered or located. Do not abbreviate.
    Organization
    The legally-registered name for your business.
    Organizational Unit
    The name of the department or organization unit making the request.
    (Optional) Email Address
    Email address of the submitter.
  4. Click Generate CSR.
    The following message is displayed: CSR generated successfully, please click to download.
  5. Click Download to download the CSR to your local computer.
    Note
    Note
    Deep Discovery Web Inspector only archives one CSR and Private Key. If multiple certificates are needed, generate a CSR after the previous certificate has been imported successfully. Otherwise, the previous CSR and Private Key are replaced.