Help Center> ROMA Connect> User Guide> Service Integration Guide (Old Edition)> Managing APIs> SSL Certificate Management

Updated on 2023-02-28 GMT+08:00

View PDF

SSL Certificate Management

Overview

If the API group contains HTTPS-compatible APIs, add an SSL certificate for the independent domain name bound to the group.

Prerequisites

Only SSL certificates in PEM format can be added.
The added SSL certificates support only the RSA, ECDSA, and DSA encryption algorithms.

Creating an SSL Certificate

Log in to the ROMA Connect console. On the Instances page, click View Console of an instance.
In the navigation pane on the left, choose API Connect > API Management. On the SSL Certificate Management tab page, click Create SSL Certificate.

In the displayed dialog box, configure the SSL certificate information.

**Table 1** SSL certificate configuration
Parameter	Description
Name	Enter an SSL certificate name. It is recommended that you enter a name based on naming rules to facilitate search.
Scope	Specify the scope to view the SSL certificate. Current instance: The SSL certificate can be viewed only in the current instance. All: The SSL certificate can be viewed in all instances under the current account.
Content	Enter the SSL certificate content in PEM format. Open the PEM certificate file in the certificate to upload in text, and copy the certificate content to content. If the certificate is not in PEM encoding format, convert the format by referring to Converting the Certificate Format to PEM.
Key	Enter the SSL certificate key in PEM format. Open the KEY/PEM private key file in the certificate to be uploaded in text, and copy the private key to Key.

Click OK. The SSL certificate is added.

Converting the Certificate Format to PEM

Format	Converting with OpenSSL
CER/CRT	Rename the certificate file cert.crt to cert.pem directly.
PFX	Obtain a private key. For example, run the following command to convert cert.pfx into key.pem: openssl pkcs12 -in cert.pfx -nocerts -out key.pem Obtain a certificate. For example, run the following command to convert cert.pfx into cert.pem: openssl pkcs12 -in cert.pfx -nokeys -out cert.pem
P7B	Convert a certificate. For example, run the following command to convert cert.p7b into cert.cer: openssl pkcs7 -print_certs -in cert.p7b -out cert.cer Rename the certificate file cert.cer to cert.pem.
DER	Obtain a private key. For example, run the following command to convert privatekey.der into privatekey.pem: openssl rsa -inform DER -outform PEM -in privatekey.der -out privatekey.pem Obtain a certificate. For example, run the following command to convert cert.cer into cert.pem: openssl x509 -inform der -in cert.cer -out cert.pem

Parent topic: Managing APIs

Previous topic: Configuring an API Scheduled Task

Next topic: Appendix: Extended Swagger Definition of APIs

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.