3.7.1 Requesting a Certificate for the Framework Manager Console

For added security, you can install a certificate to use when accessing the Framework Manager console. To access this option, you need to select the Administration Manager (admin) package on the host that you want to protect. You must then complete a certificate request form, send it to your chosen certification authority, and then install the certificate that you receive.

NOTE:By default, OpenSSL accepts DNS, email, URI, RID, IP, dirName as a Subject Alternative Name (SAN). Privileged Account Manager uses OpenSSL to generate a Certificate Signing Request (CSR). When requesting a certificate in Privileged Account Manager, use the Alternative Names in the console as the "DNS" attribute.

Syntax for Alternative Names is:

  • DNS:example.com, DNS:www.example.com

  • DNS:example.com, DNS:www.example.com, IP:

  1. On the home page of the console, click Hosts.

  2. In the navigation pane, select the host that you want to protect with a certificate.

  3. In the details pane, click Packages and select the Administration Manager (admin) for the Framework Manager console.

  4. Click Request Certificate in the task pane.

  5. Specify the necessary details as described in your chosen certification authority documentation.

  6. Click Finish.

    The text for your certificate request is displayed in the text area.

  7. Copy the certificate request into an e-mail and send it to your chosen certification authority.

  8. When you receive the certificate from your certification authority, install it as described in Installing a Certificate.