Renewing Kerio Control SSL Certificates
By default, Kerio Control ships with several predefined SSL certificates which are used for specific purposes. There's a "Default", one for Reverse Proxy, one for Local Authority and one for VPN.
Although by default each of these is assigned to specific uses, in fact you only need one SSL certificate and could use that for every need. Kerio provides multiple certs so that you can revoke one feature without affecting others. That certainly would be an unusual situation, though.
Certificates do expire. That won't necessarily break anything, although it does cause annoying messages and perhaps questions from users. There are some things you need to watch out for when creating new certificates for these uses.
First, although you can use the same name for the new certificate, that can be confusing when you are trying to assign that new cert to its use. I use a different name. Second, don't delete or rename the active certificates until you have the new ones in place. I accidentally did that recently on a VPN certificate and locked myself out of the firewall. Fortunately I was able to access it directly by public IP also.
Got something to add? Send me email.
(OLDER) <- More Stuff -> (NEWER) (NEWEST)
Printer Friendly Version
Increase ad revenue 50-250% with Ezoic
Inexpensive and informative Apple related e-books:
Take Control of iCloud
Take Control of the Mac Command Line with Terminal, Second Edition
Photos for Mac: A Take Control Crash Course
Take Control of Your Digital Photos on a Mac
Take Control of Your Apple Wi-Fi Network