SBCE, IPO certificates from GoDaddy

[TonyAMIC]

I am trying to install new certificates on my SBCE. I generated the CSR via a non-SBCE device and exported the certificate. I signed the CSR against GoDaddy, but I am getting an error on the SBCE about an unknown CA. I have read from other sources that for GoDaddy certs you have to combine the gd_bundle-g2-g1.crt and the gdig2.crt.pem. Is that correct? is it appropriate to use openssl to do this, or can you just do a cat against them and create a .pem file?

Any help/workthrough of the process that has worked for you, especially with GD certs, would be great. Thank you.

 

[biglebowski]

You need to import the godaddy Root CA to the SBCE as well.

You also need to generate the CSR on the SBCE as it also creates a key file used for the import.

I found this guide good for SBCE certificates, I did an SMGR ident cert for the inside interface and a Globalsign public cert for the outside interface.

Section 5

https://www.devconnectprogram.com/fileMedia/download/d5d8f560-8829-4ecc-84ca-630450243b96