Good day, I am aware of the API call "/v1/certificates/add" to add client certificates, for instance Rhino.
My question is around the SSL system certificate for incoming communication.
From the Admin guide,
The system comes with its own self-signed SSL system certificate, which is generated and installed automatically when the system is installed. This certificate is sufficient for some purposes but not automatically trusted by web browsers. For production systems the best practice is to obtain and use a certificate from a certificate authority (CA).
If you choose to replace the self-signed system certificate, do one of the following:
- Upload a PKCS12 format certificate chain from a CA.
- Download a certificate signing request (CSR) and use it to obtain, upload, and apply a certificate signed by a CA.
- Generate and apply a new self-signed SSL server certificate. You might do this, for example, if the current certificate is close to expiring and you are waiting to retrieve a new one from your CA.
How does one achieve this?