Replacing the Certificate of a Customer Gateway
Scenario
When the CA certificate of a customer gateway that uses SM series cryptographic algorithms expires or becomes invalid, you need to replace the CA certificate.
After the CA certificate is replaced, the customer gateway needs to use the SM certificate issued based on the new CA certificate to renegotiate with the VPN gateway. Otherwise, VPN connections will be disconnected.
Procedure
- Log in to the management console.
- Click
in the upper left corner and select the desired region and project. - Click
in the upper left corner of the page, and choose . - In the navigation pane on the left, choose .
- On the Customer Gateways page, click the name of the target customer gateway.
- In the CA Certificate area, click Replace.
- Set parameters as prompted.
Table 1 describes the parameters for replacing the CA certificate of a customer gateway.
Table 1 Parameters for replacing the CA certificate of a customer gateway Parameter
Description
Example Value
Upload a certificate
CA certificate of the customer gateway.
-----BEGIN CERTIFICATE-----
CA certificate
-----END CERTIFICATE-----
Use an uploaded certificate
Select an uploaded certificate. Pay attention to the time when the certificate will expire.
-
- Select "I have read and understand the preceding risk, and would like to replace the CA certificate anyway." and click OK.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
