Creating a Certificate for the CommServe

Self-signed certificate can be used to create trust for the CommServe. You can use OpenSSL to create a key and a self-signed certificate on any machine, and then copy these files to the CommServe machine.


  1. To create a 2048-bit RSA key, execute the following command:

    openssl genrsa –out client_private.pem 2048

  2. To create a self-signed certificate using the key created above, execute the following command:

    openssl req -new -x509 -key client_private.pem -out client.pem -days 365

  3. Follow the prompts. When prompted for the Common Name, enter the host name that you specified when adding CommServe to the DSM. This name must be a perfect match.

    Two files client_private.pem and client.pem are generated. The client_private.pem file contains the key and the client.pem file contains the certificate.

  4. Copy the client_private.pem and client.pem files to the CommServe machine.

What to Do Next

Uploading the CommServe Certificate to the DSM

Last modified: 6/17/2020 9:22:12 AM