Web server certificates are used to provide access to a web application, typically for Browser Access. A certificate is selected when defining an application within an application segment.

You can upload a web server certificate using one of the following workflows:

• Upload an existing web server certificate.

or,

• Create a certificate signing request (CSR) for a web server certificate.

You cannot use enrollment (CA) certificates for Browser Access.

About the Certificates Page

On the Certificates page (Policies > Access Control > Clientless > Certificates), you can do the following:

1. Upload a certificate.
2. Create a CSR for a certificate.
3. Expand all of the rows in the table to see more information about each certificate.
4. Filter the information that appears in the table. By default, no filters are applied.
5. View a list of all web server certificates that are configured for your organization. For each certificate, you can see:
   • Name: The name of the certificate.
     • Description: The certificate's description, if available.
     • Issued By: The certificate authority (CA) that issued the certificate.
     • Issued To: The entity that the CA issued the certificate to.
   • Creation Date: The creation date of the certificate.
   • Expiry Date: The expiration date of the certificate.
   • Common Name: The CN for the hostname associated with the certificate.

Depending on the Expiry Date, the following icons are displayed next to the Name:

• If the certificate has expired, a red warning icon is displayed.

See image.

• If the certificate has less than 7 days before expiration, a yellow caution icon is displayed.

See image.

• If the certificate has less than 30 days before expiration, an orange info icon is displayed.

See image.

6. Download the CSR file for the certificate.
7. Upload a certificate.
8. Edit an existing certificate.
9. Delete a certificate.