How to install SMB SSL-VPN certificates in SonicWall UTM appliances.

This article describes how to export a signed third-party certificate from an SMB SSL-VPN appliance and import it into a SonicWall UTM appliance.

Prerequisite:

• A signed certificate installed in the SMB SSL-VPN appliance. Refer to this document for more information on installing a certificate in a SMB SSL-VPN device: SMB SSL-VPN: Creating and Installing Digital Certificates on SonicWall SSL VPN Appliances
• OpenSSL installed. The commands shown in this article to convert the certificate are using OpenSSL.

Procedure:

• Login to the SMB SSL-VPN device
• Navigate to the System > Certificates page.
• Click on the down-arrow button under Download and save the zip file.

• The zip file will contain both the signed certificate and its private key.
• Extract the contents of zip file.
• It will contain "server.crt" and "server.key"

server.pfx" will be created.

• Login to the SonicWall management GUI.
• Navigate to the System > Certificates page.
• Click on the Import button.
• Select the radio-button under Import a local end-user certificate with private key from a PKCS#12 (.p12 or .pfx) encoded file.
• Enter a name for the certificate.
• Enter the password for the certificate, if any.
• Click on the Browse button and select "server.pfx".
• Click on the Import button. The certificate will be imported with Pending under Validated
• Import the CA certificate to validate the certificate.

Your certificate has been installed in the SonicWall. It could be used for SonicWall web management and UTM-SSL VPN. It is recommended that you import the root and intermediate certificates into your browser to avoid browser errors.