CI Generated Certificates
Last modified by Mark Kohlmann on 2022/01/13 21:36
Chief Integrations can sign certificates for customers to deploy on their processors. The CI generated certificate will be good until the end of 2040. This is an alternative to having the customer sign certificates with their own internal infrastructure.
| Certificate Type | Download |
|---|---|
| Root/Intermediate Chain | |
| Root | |
| Intermediate |
For Processors (3-series greater than 1.8001.4701.23085 or later / 4-series greater than v2.6000):
- Load the root and intermediate cert to their respective stores (Toolbox->Functions->Security Certificates)
- Select Root Tab
- Download
- Add Root Certificate and select the downloaded file
- Select Intermediate Tab
- Download
- Add Intermediate Certificate and select the downloaded file
- Select Root Tab
- Generate Certificate Signing Request (Toolbox->Functions->SSL Management->Play button)
- Send the following to Chief Integrations:
- CSR (Certificate Signing Request) file
- FQDN (Fully qualified domain name) of the processor
- IP Address of the processor
- Chief Integrations will send back the signed certificate
- Load the signed certificate (Toolbox->Functions->SSL Management->Play button->Upload Signed Certificate)
- Load the Root-Intermediate chain (Toolbox->Functions->SSL Management->Play button->Upload Root Certificate)
- Select CA Signed (Toolbox->Functions->SSL Management)
- Password boxes should be empty (Toolbox->Functions->SSL Management)
- Hit Ok, processor will reboot
For Touchpanels:
- Load the root and intermediate cert to their respective stores (Toolbox->Functions->Security Certificates)
- Select Root Tab
- Download
- Add Root Certificate and select the downloaded file
- Select Intemediate Tab
- Download
- Add Intermediate Certificate and select the downloaded file
- Select Root Tab