Skip to main content
Custom Certificates
Last update:

Custom Certificates

You can load a custom certificate that you have issued from a third-party certificate authority into the secret manager. To do this, you need:

  • the primary certificate for the domain;
  • a private key;
  • optionally: one or more intermediate certificates. Intermediate certificates bind the final TLS-certificate to the root certificate authority, with its help the browser verifies the authenticity of the issued TLS-certificate;
  • optional: root certificate is a part of the key used by certificate authorities to sign a TLS-certificate. May be required when using self-signed certificates.

Add user certificate

  1. A user certificate is valid only in the project to which it was added. Make sure that you are in the right project. To do this, open the projects menu (name of the current project) and select the project.

  2. In Control Panel, go to Cloud PlatformSecrets Manager.

  3. Click Add Certificate.

  4. Select User Certificate.

  5. Enter a name for the certificate.

  6. Insert the primary certificate for the domain. It must begin with -----BEGIN CERTIFICATE----- and end with -----END CERTIFICATE-----.

  7. Insert the private key. It must begin with -----BEGIN PRIVATE KEY----- and end with -----END PRIVATE KEY-----.

  8. Optional: to add an intermediate certificate, check the Add Intermediate Certificate checkbox and in the Intermediate Certificate field, insert the certificate. It must start with -----BEGIN CERTIFICATE----- and end with -----END CERTIFICATE-----.

    If you need to add multiple intermediate certificates, make sure that all certificates (primary certificate for the domain, intermediate certificates, and root certificate) create a complete chain. The Issuer value of the primary certificate must match the Subject value of the first intermediate certificate, the Issuer value of the first intermediate certificate must match the Subject value of the second intermediate certificate, and so on.

    Intermediate certificates can be added to the Intermediate Certificate field in any order, it is important to use a complete chain.

  9. Optional: to add a root certificate, check the Add Root Certificate checkbox and in the Root Certificate field, insert the certificate. It must start with -----BEGIN CERTIFICATE----- and end with -----END CERTIFICATE-----.

  10. Click Add.

Update user certificate

  1. In Control Panel, go to Cloud PlatformSecrets Manager.

  2. Open the Certificates tab.

  3. From the menu of the certificate, select Update.

  4. Insert the primary certificate for the domain. It must begin with -----BEGIN CERTIFICATE----- and end with -----END CERTIFICATE-----.

  5. Insert the private key. It must begin with -----BEGIN PRIVATE KEY----- and end with -----END PRIVATE KEY-----.

  6. Optional: to add an intermediate certificate, check the Add Intermediate Certificate checkbox and in the Intermediate Certificate field, insert the certificate. It must start with -----BEGIN CERTIFICATE----- and end with -----END CERTIFICATE-----.

    If you need to add multiple intermediate certificates, make sure that all certificates (primary certificate for the domain, intermediate certificates, and root certificate) create a complete chain. The Issuer value of the primary certificate must match the Subject value of the first intermediate certificate, the Issuer value of the first intermediate certificate must match the Subject value of the second intermediate certificate, and so on.

    Intermediate certificates can be added to the Intermediate Certificate field in any order, it is important to use a complete chain.

  7. Optional: to add a root certificate, check the Add Root Certificate checkbox and in the Root Certificate field, insert the certificate. It must start with -----BEGIN CERTIFICATE----- and end with -----END CERTIFICATE-----.

  8. Click Update.