-
Alias is a name used to distinguish certificates from one another in the Key Store. Use it to identify certificates by location or function.
-
Issued By identifies the entity that created the certificate.
-
Subject is the Distinguished Name, the name of the company that owns the certificate.
-
Not Before displays the date before which the certificate is not valid.
-
Not After displays the expiration date for the certificate.
-
Key Algorithm refers to the mathematical formula used to calculate the certificate keys.
-
Key Size shows the size of the keys in bits. Four key sizes are allowed: 1024 bits, 2048 bits (this is the default), 3072 bits, and 4096 bits. The bigger the key, the longer it takes to generate.
-
Signature Algorithm refers to the mathematical formula used to sign the certificate.
-
Signature Size shows the size of the signature.
-
Valid shows certificate dates.
-
Self Signed indicates that the certificate was signed with its own private key.
displays certificate details for the selected certificate.
opens the Generate Self Signed Certificate dialog, which is used to create CA and server certificates.
opens a Certificate Request dialog, which is used to create a Certificate Signing Request (CSR).
removes the certificate from the Key Store.
adds the certificate (.pem file) to the Key Store.
saves a copy of the selected certificate to the hard disk. The file extension is .pem.
deletes all certificates in the Key Store and creates a new default certificate. It does not matter which certificate is selected when you click Reset.
The Reset button facilitates creating a new key pair (private and public keys) for the entity, but may have unintended consequences
if you delete valid certificates. Export all certificates before you reset.
This dialog appears when you click 
at the bottom of the Key Store tab.
You use this dialog to create your own certificates along with a key pair (public and private).
There is a limit of 64 characters for each of the following fields. Do not enter blank in any field. Spaces and periods are allowed. Enter full legal names.
Alias is a short name used to identify the certificate. This field is required. Use this field to indicate the type of certificate (root, intermediate, server) and where the certificate will be used.
Common Name (CN) is your Distinguished Name and can be the same as the Alias. Do not use the symbols “*” or “?” as part of this name. This name appears as the Subject in the Key Store. This field is required.
Organizational Unit (OU) is the name of a department within the organization or a Doing-Business-As (DBA entry). Frequently, this entry is listed as “IT”, “Web Security,” “Secure Services Department” or left blank.
Organization (O) is the legally registered name of your company or organization. Do not abbreviate this name. This field is required.
Locality (L) is the city in which the organization for which you are creating the certificate is located. This is required only for organizations registered at the local level. If you use it, do not abbreviate.
State/Province (ST) is the complete name of the state or province in which your organization is located. This field is optional.
Country Code (C) is a two-character ISO-format country code. If you do not know your country’s two-character code, check the internet. This field is required.
Not Before indicates the date on which the certificate becomes valid.
Not After indicates when the certificate expires.
Key Size establishes the size of the key in bits. The larger the key, the longer it takes to generate.
Certificate Usage: identifies the purpose of the certificate. In NiagaraAX, certificates are either server or CA certificates. Other open-source certificate management software utilities may allow other usages.
Email Address is the address to which your CSR will be sent.