A submenu item, Manage Certificates, is provided to manage a certificate. You access this item by clicking File > Junos Space > Manage Certificates. The Manage Certificates menu item allows you to do the following:
Create a request to have a digital certificate issued to you, which allows you to deploy the application. The digital signature binds a key with an identity. The identity is information such as the name of the person/organization, address, and so on. This certificate is used to verify the organization's identity.
After you have received a signed certificate from Juniper Networks, Inc., you can use the Import Certificate menu item to import it into your development environment. After the certificate and key are successfully imported, the Build, Deploy, and Package for Distribution menu and toolbar options are enabled. If you build, deploy, and package any Junos Space application, the signed image is created. You can deploy this signed image in a Junos Space production environment.
Allows you to view the details of a certificate that has been already imported.
The types of certificates that can be issued and their hierarchical relationships to each other are shown in the following figure:
To manage a certificate, do the following:
Start the Eclipse IDE.
On the toolbar menu, click the Manage Certificate button, or select Junos Space > Manage Certificates from the Eclipse menu bar.
If the certificate is already imported, the following screen is displayed with details about the imported certificate:
|Certificate Request Type||Can be either a company certificate, a department/BU certificate, or an individual certificate.|
|Vendor ID||A unique ID assigned to a Juniper Networks vendor/company. This ID is issued when the company certificate is signed.|
|Common Name||May be a user name or a company vendor ID, depending on the certificate type.|
|Certificate Issue Date||The date on which the certificate is issued.|
|Certificate Expiry Date||The last valid date of the certificate.|
|Organization Information||Details such as company name, department, and email of an organization.|
|Organization's Address Information||Details such as country and state or province and city of an organization.|
If there is no certificate in place, the following screen is displayed with the message No Certificate Imported:
You can create and send a certificate signing request at the Manage Certificates window by using the Create Certificate Signing Request button. The following screen is displayed:
Note: The Company Certificate option is disabled for Juniper Networks users.
Select the certificate request type as Company Certificate. Enter the required details in the above screen and click Next. The following screen is displayed.
Click Update to update the Vendor ID.
Enter the Internet email alias.
Click Next. The following screen is displayed:
Click Finish to email the Certificate Signing Request.
If the certificate creation is successful, the following confirmation screen is displayed. The private_key.pem and cert_request.pem files are created.
Click OK. The email client configured on the user system displays a new email. Using this email, the cert_request.pem file can be sent to the person named above at Juniper Networks, Inc. The email has a predefined template that contains information about the certificate request, and it includes the cert_request.pem file as an attachment.
Note: If the cert_request.pem file is not attached to the email, then you must attach it manually.
Note: Because the Internal Alias Email ID is set to firstname.lastname@example.org, Juniper Networks users need not enter this information.
For all certificate request types, if you are creating a certificate request for the second time, then all the fields are displayed with information from the previous certificate request.
The Vendor ID is set to the value that was specified when installing the Junos Space SDK.
The following validations are performed when importing a certificate: