Description:

This article describes how you can use your own certificate for the webinterface on a GS-3xxx series switch.


Requirements:

  • GS-3xxx series switch
  • Any web browser for accessing the webinterface
  • Your own SSL certificate. The following requirements must be fullfilled:
    • The certificate must be available in *.pem format
    • The certificate must include the Private Key
    • The Private Key must be an RSA Key
    • The certificate must have a length of 2048 Bit
    • The file size of the certificate must not exceed a maximum size of 4608 Bytes (thus the certificate chain most probably cannot be included in the certificate) 


Procedure:

1) Open the configuration of the GS-3xxx switch in a web browser, go to the menu Security → Auth Method and, under Authentication Method select the option no in the dropdownmenu for the protocol https. In doing so HTTPS is deactivated. 

After deactivating HTTPS, an automatic redirect to HTTP occurs. If this is not the case, please connect manually to the switch via HTTP.

2) Click Apply, to accept the change.

3) Go to the menu Security → Management → HTTPS, modify the following parameters and click Apply:

  • Certificate Maintain: Make sure, that the option Upload is selected. This enables the upload of your own certificate.
  • Certificate Upload: Make sure, that the option Web Browser is selected. This enables the upload of the certificate via webinterface.
  • File Upload: Select the certificate file.

4) Once again go to the menu Security → Auth Method and, under Authentication Method select the option local in the dropdownmenu for https. In doing so HTTPS is reactivated.

5) Finally click Apply to accept the change.