Manage SSL certificates

An SSL certificate is an essential part of any SSL transaction. You might need multiple certificates for different apps and domains. Using the Citrix App Delivery and Security service, you can add certificates to a central repository instead of uploading a certificate each time you create an application. Later, you can simply select a certificate to use with an app while configuring the app. You can select one or more certificates to bind to an endpoint. The same certificate can be used by multiple apps.

You can add certificates to a certificate chain and the Citrix App Delivery and Security service automatically links the certificates based on the issuer and subject fields in the certificates.

The following options for uploading certificates are available:

  • Upload a single file also known as a certificate bundle. This file contains all the certificates and key that form part of the certificate chain.
  • Upload two files – the server certificate file and the certificate chain file.
  • Multiple files – Server certificate file, each of the intermediate certificates in a separate file, and the root certificate file.

The central repository for the SSL certificates in the Citrix App Delivery and Security service is called the SSL Certificate Manager. Your SSL certificates are safely stored here. You can upload your certificate files here and attach them to your applications.

Add an SSL certificate

  1. Navigate to SSL Certificate Manager and click Create SSL Certificate.
  2. In the Create SSL Certificate page, specify the following parameters:
    • Certificate Name: Name for the certificate. Must contain only ASCII alphanumeric, underscore, and hyphen characters. Cannot be changed after the certificate is created. Max length = 30 characters.
    • Certificate File: Upload the certificate file from your local computer.
    • Key File: Upload the key file from your local computer.
    • Key Password (if required): If you have an encrypted private key in PEM format, type the passphrase that was used to encrypt the private key.
    • To add the certificate to the chain, select Add certificate in certificate chain. Select an intermediate certificate or a certificate bundle to upload to the certificate chain. Click Add.
  3. Click Create.

    Create SSL certificate

Modify or delete an SSL certificate

You can delete or update the certificate and key file. You can also update the certificate in the certificate chain.

To update a certificate

  1. Navigate to SSL Certificate Manager.
  2. In the SSL Certificate page, click the Edit icon for the certificate that you want to update. Edit SSL certificate
  3. In the Update SSL Certificate page, select one or both of the following and upload the file. Update an SSL certificate

To delete a certificate

  1. Navigate to SSL Certificate Manager.
  2. In the SSL Certificate page, click the Delete icon for the certificate that you want to delete.
  3. When prompted, click Yes, Delete.
Manage SSL certificates