This guide contains instructions on how to install an SSL certificate on SonicWall VPN client. It also includes information on how to generate a CSR code on SonicWALL for those who haven’t purchased an SSL product yet. The guide concludes with a brief history of SonicWall, and useful tips on where to buy an SSL Certificate for SonicWall.
Generate a CSR Code on SonicWall
CSR generation is a required step during the SSL activation. CSR stands for Certificate Signing Request, a small text file containing all the necessary information about domain ownership and organization to which the SSL certificate will be assigned.
We’re going to generate the CSR code directly on the SonicWall SSL-VPN appliance. Then you will send it to your Certificate Authority during your SSL order process, and, in turn, your SSL provider will sing your certificate and provide the installation files.
- Log into your SonicWall VPN appliance dashboard
- Next, hover your mouse to the left upper corner, expand the Systems menu and click on Certificates
- On the Server Certificates page, click the Generate CSR button
- On the next page, fill in all the fields with the required details. Make sure the information is up to date
- Name: Assign an easy-to-remember name to your Certificate. To avoid confusion, you may enter your domain name
- Organization: Type the legal name of your company. For example, GPI Holding LLC. If you have a Domain Validation certificate, simply enter NA
- Unit/Department: Indicate the unit within your organization responsible for SSL management. For instance, IT. For Domain Validation certificates put in NA
- City/Locale: Specify your city. For Business and Extended Validation certificates, specify the city where your company is legally located
- State: Same as above. If you have a BV or EV certificate, you must enter your company’s state of origin
- Country: This field requires the two-letter code of the country where your organization is registered
- Domain Name (FQDN): Enter the Fully Qualified Name of the domain you want to secure. For example, ssldragon.com
Note: If you have a Wildcard certificate, please include an asterisk in front of the domain name, like this: *.yourdomain.com. Make sure your domain points to the SonicWall SSL-VPN appliance’s public IP address.
- Subject Alternative Name (optional): If you bought a Multi-Domain SSL certificate, insert the additional domains you want to protect
- Email address: Provide a valid email address
- Password: If you want, you can create a password for your private key. You will need the private key during the installation process
- Key Length (bits): From the drop-down list, select This is the standard industry bit length. While SonicWALL supports key sizes up to 4096 bits, a higher value may negatively affect your certificate performance
- Double-check all the fields you’ve just completed, and then click Submit
- SonicWall will create a .zip file with your CSR code and private key. Please, save this file on your desktop
- From the created .zip file, extract the two files: server.csr and server.key
- Open the server.csr file with any text editor such as Notepad
- Now, you can see the CSR code you’ve just generated. You will need to copy the full text including the —–BEGIN CERTIFICATE REQUEST—– and —–END CERTIFICATE REQUEST—– tags, and send it to the CA during your order process. Hint: Use the ctrl+a hotkey to select the entire text.
That’s it! Once the CA signs and sends your certificate files you can continue with the SSL installation.
Install an SSL Certificate on SonicWall
- Download and extract your SSL certificate files
- Rename the .crt file to server.crt. This is a specific SonicWall requirement
- Next, create a zip file folder with two files: server.crt (your SSL certificate) and server.key (your private key). Tip: Copy both files into a new folder, select them (ctrl+a), right-click the selection and click to Send to > Compressed Folder
- Log into your SonicWall SSL-VPN dashboard
- Click on Systems to expand the menu, and then click Certificates
- On the new page, in the Server Certificates section, press the Import Certificate button
- Start with your SSL certificate file. Select Import Certificate > Browse and find the zip file you’ve just created. Click Upload. If the upload is successful, the certificate will appear in System > Certificates > Server Certificates
- Next, under Additional CA Certificates, click Import CA certificate. In the new window locate and upload your CA bundle file
Note: The file with .ca-bundle extension contains your root and intermediate certificates. While uploading them is optional, older browser versions may not trust your SSL certificate unless you provide the CA bundle file.
- Now that you’ve uploaded the SSL files, it’s time to configure your certificate. On the System > Certificates page, in the Server Certificates menu, locate your new SSL Certificate, and click the Configure (right-side) icon
- If you created a password during the CSR code generation, please enter it and click Submit; otherwise, continue with the next step
- From System > Certificates choose the SSL Certificate you want to configure and click Apply in the top right corner
- SonicWall will ask you to restart the server. If you don’t receive the “restart” message, expand the System menu, and click Restart
- Congratulations! You’ve successfully installed the SSL Certificate on SonicWall SSL-VPN appliance.
SonicWall is a major seller of Internet appliances designed for content control and network security. SonicWall’s products range from firewalls, VPNs, and wireless security to spyware and malware prevention solutions. Initially, SonicWall was “Sonic Systems”, a company developing Ethernet and Fast Ethernet cards, hubs and bridges for the Apple market.
In the late nineties, Sonic Systems launched a firewall and VPN product, named “Interpol” and later branded “SonicWall”. The sales went to the roof, and the company left the Apple market to focus solely on network security. The change of name from Sonic Systems to SonicWall occurred in 1999.
Where to buy an SSL Certificate for SonicWall?
You don’t need to leave this website! Here, at SSL Dragon, we offer the widest range of SSL products at incredible prices. All our certificates are compatible with SonicWall and are suited for projects of any size and budget. Browse the list below to find the SSL type you need:
- Domain Validation
- Business Validation
- Extended Validation
- Code Signing
- IP Address
If you find any inaccuracies, or you have details to add to these SSL installation instructions, please feel free to send us your feedback at [email protected]. Your input would be greatly appreciated! Thank you.