Certificates in Catalogic vStor

Catalogic vStor supports using a default built-in certificate or importing a custom certificate, essential for scenarios like adding a MinIO bucket.

Prerequisites for the custom certificates of Catalogic vStor

• Only one custom certificate is allowed.

• Certificates must be valid (not expired) and have a Subject Alternative Name (SAN).

• Password-protected certificates are not supported.

Generating a certificate example

For a vStor server (e.g., IP 10.0.0.20), you can generate a self-signed certificate using openssl command:

openssl req -x509 -newkey rsa:4096
-keyout my-private.key
-out my-custom.crt
-days 365
-nodes
-subj "/C=US"
--addext "subjectAltName=IP:10.0.0.20"

Managing certificates in Catalogic vStor

In the vStor Management Interface on your web browser, you can see a list of available certificates in Catalogic vStor and see their expiration date, add or overwrite a custom certificate, and select a certificate to use from either the built-in certificate or custom certificate. Take the following steps to manage the certificate for Catalogic vStor:

1. Log in to the vStor Web Interface.

2. From the navigation pane, open System and then the Certificate section.

3. Active/Inactive status indicates current usage. The Valid until means the expiration day and time of the certificate. The timestamp is in MM-DD-YYYY format and uses your browser’s time zone.

4. To register or update a certificate, click Edit in the Certificate section, input the certificate text and private key, and Save.

Ensure that you can see the new or updated custom certificate in the certificate list.