BigFix MDM Server TLS Certificate Content
Understand the required format of the BigFix MDM Server TLS certificate for MDM Server installation.
- BigFix MDM server TLS Certificate Content
- The MDM Server certificate must be available in a .crt
or .pem format, and must take the form of a certificate
chain containing the following:
- The actual MDM TLS certificate provided by the trusted CA
- Any intermediate certificates provided by the trusted CA
- The trusted CA root certificate
Encrypt TLS private key
To securely store the private key used while creating the CSR for the Trusted CA TLS
certificate, you must encrypt it. Do the following to encrypt the TLS private
key.
- Run the following command:
When using RHEL8
openssl rsa -des3 -in <TLSKEY>.key -out mdmserver.key
When using RHEL9
whereopenssl rsa -des3 -in <PUSHCERTNAME>_temp.key -out <PUSHCERTNAME>.key -traditional
TLSKEY
is the name of the key used when originally creating the TLS Certificate CSR. - When prompted, enter the encrypted private key pass phrase of your choice.
- Verify it.