Export a Certificate from Your Firebox

You can export a certificate from your Firebox. The exported certificate is saved in PEM format. For some certificate distribution methods, the preferred certificate format for import is the DER format. For instructions on how to convert the PEM format certificate to DER, go to Convert Certificate Format.

A client can also download and install the Proxy Authority certificate from the Certificate Portal on the Firebox at http://<Firebox IP address>:4126/certportal. For more information, go to Certificate Portal.

To export a certificate, from Fireware Web UI:

  1. Select System > Certificates.
    The Certificates page opens.
  2. Select a certificate and click Export.
  3. Select a location and type a name for the certificate.
    The certificate is saved in PEM format.

To export a certificate, from Firebox System Manager:

  1. Start Firebox System Manager for your Firebox.
  2. Select View > Certificates.
  3. Select the certificate from the list and click Export.
  4. Select a location and type a name for the certificate.

When you use Firebox System Manager to create a certificate-signing request, your Firebox also creates a private key. It is not possible to export this private key from your device. If you want to use the server certificate for a different device, you must have this private key to import the certificate. For an alternate method to create a certificate-signing request and private key, see Create a CSR with OpenSSL.

Related Topics

Manage Device Certificates (WSM)

Manage Device Certificates (Web UI)