Reference10:General/Certificates/Create new
There are also other versions of this article available:
Reference9 | Reference10 (this version)
This dialog is for creating self-signed certificates and certificate requests.
| Type | Self-signed certificate or signing request. |
| Key | Select the key strength of the certificate here. Stronger keys are more secure but encryption/decryption is way slower. You can also reuse the key of the current certificate. |
| Signature | The signature algorithm that should be used to sign the certificate. The standard algorithm is SHA1. You can also select SHA256, SHA384 and SHA512 that are more secure. |
| Validity | The number of years the certificate shall be valid from now. Applies only to self-signed certificates. |
| Common Name | The common name should match the host name of the box. |
| Other naming fields | These fields are optional. |
| DNS Name | If the box has got a DNS name you should enter it here. It will be stored as a SubjectAltName in the certificate. |
| IP address | If the box has got a fixed IP address you should enter it here. It will be stored as a SubjectAltName in the certificate. |
If you add any DNS names or IP addresses the browser will ignore the common name. Therefore you also have to add the domain from the common name as a DNS name.