Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


About the Certificate Management Page

To access this page, select Secure Edge > Service Administration > Certificate Management.

You must manage the device certificates to establish Transport Layer Security (TLS) or Secure Socket Layer (SSL) sessions. TLS or SSL uses public-private key technology that requires a paired private key and an authentication certificate. SSL encrypts communication between the web browser and web server with a session key negotiated by the SSL server certificate. Device certificates are required for both on-premises users and roaming users. The certificate generation is a one-time activity and you must do it before deploying the security policies.

Use this page to manage TLS/SSL certificate that is used to establish secure communications between Secure Edge and user endpoints. The certificates may be signed by your own Certificate Authority (CA) or by Juniper's CA. You may create a new certificate signing requests (CSR) that can be used to generate a new certificate by your own CA or you can have Juniper Networks create a new certificate.

Tasks You Can Perform

You can perform the following tasks from this page:

  • Generate a CSR or a Juniper Networks issued certificate. See Generate a Certificate.
  • Upload a certificate. See Upload and Download a Certificate.
  • Download a certificate. See Upload and Download a Certificate.
  • Regenerate a certificate. See Regenerate and Delete a Certificate.
  • Delete a certificate. See Regenerate and Delete a Certificate.
  • View details of a certificate. To do this, select an existing certificate and click More > Detail. The details of the certificate appears on the right-hand side of the page. Also, when you hover over the certificate name, a Detailed View icon appears before the certificate name. You can also use this icon to view the certificate details.
  • Search for a text in a certificate. To do this, click the search icon in the top right corner of a page to search for text containing letters and special characters on that page. To search for text: Enter partial text or full text of the keyword in the search bar and click the search icon. The search results are displayed. Click X next to a search keyword or click Clear All to clear the search results.
  • Show or hide columns in the Certificate Management table. To do this, use the Show Hide Columns icon in the top right corner of the page and select the options you want to show or deselect to hide options on the page.

Table 1 provides the details of the fields of the Certificate Management page.

Table 1: Fields on the Certificate Management Page




Displays the name of the certificate.

Certificate name is unique across the device. This will be used to create a key pair along with the algorithm to associate with the key.


Displays the certificate type:

  • Custom—new certificate signing request (CSR)
  • Juniper issued certificate

Expiry Date

Displays certificate expiration date.

Encryption Type

Displays whether the algorithm of the certificate is RSA, DSA, or ECDSA encryption.