Use bulk certificate upload

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • In Certificate Inventory and Management version 1.2.0 and later, you have the option to efficiently import SSL certificates in bulk, allowing you to upload up to 5000 certificates within a single .xlsx file for time and resource savings.

    Before you begin

    Role required: pki_user or pki_admin

    The default admin is assigned both the pki_user and pki_admin roles. The users with the following roles have access to bulk certificate upload.
    • sn_disco_certmgmt.pki_user
    • sn_disco_certmgmt.pki_admin

    Procedure

    1. Navigate to All > Certificate Management > Bulk Upload Certificates.
    2. From the Bulk Upload page, select Download Template File (.xlsx) link to download the sample_cmdb_ci_certificate.xlsx file.
    3. Open the downloaded sample_cmdb_ci_certificate.xlsx file.
    4. Refer to the sample values in the columns as a guide, and add the SSL certificate's properties into the corresponding columns.
      Each entry in the Excel sheet corresponds to a CI certificate. Ensure the following mandatory columns are filled in.
      • root_issuer
      • issuer
      • subject_common_name
      • issuer_common_name
      • fingerprint
      • issuer_distinguished_name
      • subject_distinguished_name
      • fingerprint_algorithm
      • valid_to: Cannot be less than valid_fom. By milliseconds. For example, 1586789478000 represents 13 April 2020 14:51:18
      • valid_from: By milliseconds. For example, 1586789478000 represents 13 April 2020 14:51:18
      • signature_algorithm
      • key_size
      • state: issued, installed, revoked, retired, or other
      Note:
      For maintaining the certificate’s chain relationship, every certificate must have the fingerprint of its root certificate in the root_issuer column and the fingerprint of its issuer in the issuer column. For self-signed certificates, both root_issuer and issuer must have the value of the certificate's fingerprint.
    5. Save the sample_cmdb_ci_certificate.xlsx file.
    6. Navigate to Certificate Management > Bulk Upload Certificates.
    7. Select Browse File and choose the complete sample_cmdb_ci_certificate.xlsx file.
    8. Select Upload.

    Result

    If any errors occur while uploading, a warning message and link to the error logs appears. Only users with the admin role can view these logs. Errors can occur when a mandatory field is left empty or a valid_from epoch value is greater than that of valid_to.

    After the file is successfully uploaded, you can see a success message displayed with a View All redirect link. You can view a list of the certificates that were added to the Unique Certificate [cmdb_ci_certificate] table.