Re: Privacy Error on loading intranet page in Chrome

[Pete Helgren <pete@xxxxxxxxxx>]

Based on a conversation or two I had with folks from IBM at the Common 
Annual Meeting and Spring Conference, I DO know that DCM is getting some 
attention.  I asked that the API for generating a CSR be exposed and an 
API to call to import the resulting certificate from a a third party 
would be created/exposed so integration with LetsEncrypt could be 
easier.  Adding the SAN would be a reasonable request.

I didn't hear the exact mention for getting those requests into IBM but 
an RFE wouldn't be a bad idea.

Pete Helgren
www.petesworkshop.com
GIAC Secure Software Programmer-Java
Twitter - Sys_i_Geek  IBM_i_Geek

On 5/15/2017 12:46 PM, Dan Lanza wrote:
> Hi Keith,
>
> We encountered the same issue with v58 using DCM generated certs.  The way we addressed the issue was by creating the CSR on a Linux machine and then importing the cert to DCM.  It's tricky because the only way (AFAIK) is to create a configuration file to base the CSR off of.  The typical CLI procedure alone wouldn't do it.
>
> An outline of this process can be found here:
> https://geekflare.com/san-ssl-certificate/  
>
> While not the most difficult work around, this may be a sign DCM needs an update.  Google is just enforcing a nearly 20 year old RFC and there is no way (AFAIK) to add a SAN using DCM alone.
>
> GL,
> Dan Lanza