Generate and import a certificate for the Panorama™ Node
as part of a certificate to secure communication between the Panorama
Controller and Panorama Node.
For the Panorama™ Controller to authenticate
each Panorama Node, create a unique certificate for each Panorama
Node. The Panorama Controller and Node use certificate-based authentication
to securely communicate with each other. Before you generate the
unique Panorama Node certificates, Obtain the CA Certificate for the Panorama Controller.
If
your Panorama Node is in a high availability (HA) configuration,
you must create and import the Panorama Node certificates of both
Panorama Nodes to each peer in the HA configuration.
. The
name is case-sensitive and can have up to 31 characters. It must
be unique and use only letters, numbers, hyphens, and underscores.
In the
Common Name
field, enter
the serial number of the Panorama Node.
The serial number must be entered in
the
Common Name
field in order to authenticate
the connection between the Panorama Controller and Panorama Node.
The Panorama Node cannot connect to the Panorama Controller if the
serial number is not entered in this field.
—Allows
you to export the certificate and private key separately. If you
want the exported file to include the private key, select the
Export
Private Key
check box.
Encrypted Private Key and Certificate (PKCS12)
—
Export the certificate and private in a single file.
Check (enable)
Export Private Key
.
Enter a
Passphrase
and
Confirm
Passphrase
to encrypt the CA certificate. This passphrase
is required when importing the CA certificate to the Panorama Node.
Click
OK
and save the encrypted
certificate in
.pem
to your local device.
Enter a descriptive file name for the certificate
so that you can easily identify the Panorama Node it needs to be
imported to, and
Save
the certificate.
Import the certificate in to each Panorama Node.
(
HA Configuration only
) If the Panorama
Node is in a high availability (HA) configuration, you must import
the peer Panorama Node certificate into each Panorama Node in the
HA configuration.