binaryman Posted January 12, 2012 Posted January 12, 2012 I have a web site, NAS, etc. I run from home, all using the same private key and SSL cert which I have. Is there a way to import an exsiting SSL cert and private key into the ISY-99i? I don't want to have to buy another cert for the same domain name, when I already have one...
Michel Kohanim Posted January 12, 2012 Posted January 12, 2012 Hi binaryman, What's the key strength? And, do you still have the text version of the certificate that was sent back from the CA? If key strength is 1. Go to https://www.universal-devices.com/ssl/insteon 2. Login 3. Go to SSL Certificate Management | Receive Certificate from CA and Install With kind regards, Michel
binaryman Posted January 12, 2012 Author Posted January 12, 2012 Thanks Michael. I'm currently on the official 2.8 whatever it is.. but did download that newest beta, thinking about installing. I assume this would be the next best step? without going into detail, what is\are the biggest changes between current official and that beta? I went over the release notes, but didn't see anything HUGE except for the interface changes\additions
binaryman Posted January 12, 2012 Author Posted January 12, 2012 or do you mean 2.8.16 and above? I have 2.8.16, and when I choose that option it says: could not retrieve the private key. please redo CSR. But I don't want to generate a private key, I want to use the one I already have with the cert that was generated for it.
Michel Kohanim Posted January 12, 2012 Posted January 12, 2012 Hello binaryman, 2.8.x does not support 2048 bits and thus the reason to upgrade to the most stable beta (3.1.16). Would you please try creating a certificate using http://www.cacert.org/ (free certificate)? With kind regards, Michel
binaryman Posted January 13, 2012 Author Posted January 13, 2012 I've upgraded to newest beta, still can't import my existing cert. I've tried joining and creating a cert on that site, but it seems hodge podged together, and sits there spinning when I try to login, and the cert login page goes to a 'page cannot be found'.... I just want to use the cert I currently have. How can I do this? How can I import the private key and cert? Web? Java? Telnet? something?? I can't be the only one that has an existing cert they want to use.
binaryman Posted January 13, 2012 Author Posted January 13, 2012 Also, I cannot generate a self signed cert or request for a CA, as the cursor just sits there spinning, and it never goes anywhere...
binaryman Posted January 13, 2012 Author Posted January 13, 2012 Also, I cannot generate a self signed cert or request for a CA, as the cursor just sits there spinning, and it never goes anywhere...
Michel Kohanim Posted January 13, 2012 Posted January 13, 2012 binaryman, Please clear your Java cache and retry. I am not sure if you can use your current cert mostly because the cert request was not generated by ISY. With kind regards, Michel
binaryman Posted January 13, 2012 Author Posted January 13, 2012 well, no.. that's why I need a way to be able to import the private key as well. Is there a way to do this? backdoor even? seems silly if you couldn't..
Michel Kohanim Posted January 15, 2012 Posted January 15, 2012 binaryman, I wouldn't call it silly ... that's how RSA works. With kind regards, Michel
inline Posted July 6, 2012 Posted July 6, 2012 I need this ability as well. I have a wildcard cert for my domain and I'd like to import it. My Synology NAS allows this, you just specify the certificate and the private key and it's done. Is this possible for the ISY? If not, can this be implemented? I don't want to generate a new CSR when I have a perfectly fine wildcard cert that works....
Michel Kohanim Posted July 7, 2012 Posted July 7, 2012 Hi inline, Currently working on our security pack/enhancements for 994 and supporting up to TLS 1.2 and additional ciphers/hashes. We might be able to do something with this as well but I cannot guarantee. With kind regards, Michel
Recommended Posts