Configuring TLS/SSL Certificates for Unified Access Gateway Appliances

1. Navigate to the Unified Access Gateway Administration Console Login

UAG Admin UI Login
  1. Click the New Tab button.
  2. Enter https://192.168.110.20:9443/admin for the URL and press Enter.
  3. Click the Advanced link.
  4. Accept the security exception and click the Proceed to 192.168.110.20 (unsafe) link.

2. Log In to the Unified Access Gateway Administration Console

UAG Login
  1. Enter admin for the username.
  2. Enter VMware1! the password created for the Admin API in the Deploy OVF Wizard.
  3. Click Login.

3. Unified Access Gateway Import and Configuration Settings

Successful login

A successful login will redirect you to the following screen, where you can import settings or manually configure the Unified Access Gateway appliance.

Click Select.

4. Configuring TLS/SSL Certificates for Unified Access Gateway Appliances

Configuring TLS/SSL Certificates for Unified Access Gateway Appliances

TLS/SSL is required for client connections to Unified Access Gateway appliances. Client-facing Unified Access Gateway appliances and intermediate servers that terminate TLS/SSL connections require TLS/SSL server certificates.

TLS/SSL server certificates are signed by a Certificate Authority (CA). A CA is a trusted entity that guarantees the identity of the certificate and its creator. When a certificate is signed by a trusted CA, users no longer receive messages asking them to verify the certificate, and thin client devices can connect without requiring additional configuration. A default TLS/SSL server certificate is generated when you deploy a Unified Access Gateway appliance.

Up to this point the Unified Access Gateway appliance is using the default certificate, which is not signed by a trusted CA.

Click the gear icon for TLS Server Certificate Settings under Advanced Settings.

4.1. Configuring Type of Certificate

Configuring Type of Certificate
  1. Select the gear next to TLS Server Certificate Settings under Advanced Settings.
  2. Check Internet interface.
  3. Check Admin interface.
  4. Select PFX as Certificate Type.

4.2. Choose Upload PFX Certificate

Upload Certificate

Click Select to upload the certificate in PFX format.

4.3. Select PFX Certificate

  1. Click Local Disk (C:).
  2. Click AW Tools.
  3. Click airwlab.com.pfx.
  4. Click Open.

4.4. Enter Certificate Password and Save

  1. Enter AirWatch for the certificate password.
  2. Click Save.

4.5. Unified Access Gateway Certificate Changed

Certificate changed

You receive a message stating that the Internet-facing interface certificate was changed. You need to reload the administration console to see the changes you made.

  1. Click the Close button on the Unified Access Gateway administration console browser tab.
  2. Click the New Tab button.

4.6. Validating Certificate installation

Certificate Validation

Browse to https://uag.airwlab.com:9443/admin

You should no longer see a certificate error on the Browser navigation bar.

0 Comments

Add your comment

E-Mail me when someone replies to this comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.