1. Choose Configuration from the top navigation menu.
2. Under Security, choose SSL Management.
3. Click the Add Profile + button at the top of the screen.
4. Provide a name for your temporary profile (eg: New Cert) and click the Save button.
5. Click the checkbox in front of your new profile.
6. Click the Generate CSR button at the bottom of the page.
7. Fill out the Certificate Signing request form and click "Generate Certificate" button.
8. Provide the downloaded CSR to your Certificate Authority to get your new cert.
9. Download individual .crt or .pem files for your certificate, any intermediate certificates, and the root certificate.
10. Select the profile you're working on and click the "Import" button.
11. Choose "Import Key and Certs" from File Type drop down menu.
    • If you created the CSR on the appliance, the private key will already exist on the appliance, so this field can be left blank.
12. Browse for your root, intermediate, and public cert files and click "Import."
    • These certs should be in a text format, 1 cert per file.
13. Select the profile you're working on and click the "Test" button.
14. Choose a different port to test on if needed and then click the "Test" button.
15. If your certificate is valid, Click the Import button on the default (active) profile.
16. Select the "Import from Profile" option under File Type.
17. Select the profile containing your new valid cert and click the Import button.
18. Click the "Send Cluster Reload" button to make this your new active configuration.