W3tTr3y's blog

A personal technology focused blog

Splunk: 3rd-party CA SSL Certificates

Overview

As a general rule of thumb, if people will be accessing a website that utilizes a login, you should use transport layer security (TLS). While certificate pinning can provide a significant level of security, the standard method is to use a 3rd party CA to sign those certificates. While most users may never connect to the admin port (REST API), if you already have a certificate for the web port, why not re-use it?

My Situation

To be more specific, at work we utilize an agreement to obtain certificate through a deal with InCommon. When we download a certificate, there is the root certificate, an intermediate certificate, and finally our servers certificate.

Generating a CSR

Generating a Certificate Chain

Consolidating Certificate & Keys

Configuring Splunk