If the existing trusted SSL certificate needs to be replaced, and a trusted certificate is already in use, you must first change the certificate configuration to use the default certificate from Barracuda Networks before you can upload and install the new trusted SSL certificate. After the certificate has been uploaded and installed you must synchronize the trusted SSL certificate between the two interfaces, so it is used for the SSL VPN web interface as well as the Appliance web interface.
Replacing a trusted SSL certificate
Step 1. Change the certificate type to default
- Log into the Appliance web interface.
- Open the Basic > SSL Certificate page.
- In the SSL Certificate Configuration section, set the Certificate Type to Default (Barracuda Networks).
- Click Save Changes.
- If you are using a self-signed SSL certificate, add a security exception for the the new (default) SSL certificate.
The UPDATING window is displayed until you can log back into the Appliance web interface.
Step 2. Upload the new trusted SSL certificate
- Log into the Appliance web interface.
- Open the Basic > SSL Certificate page.
- Set the Certificate Type drop down box to Trusted (Signed by a Trusted CA).
- Upload the new certificate components in the Trusted section.
- Next to the uploaded certificate, click Use.
- If you are using a self-signed SSL certificate, add a security exception for the the new (trusted) SSL certificate for your browser.
Step 3. Synchronize the new trusted SSL certificate
- Log into the Appliance web interface.
- Open the Basic > SSL Certificate page.
- Click Clear All Unused Files.
- Click Synchronize. A security prompt is displayed.
- Click OK.
The new SSL certificate is now used for both the Appliance and SSL VPN web interface.