Step By Step
Log in to the ECX shell and generate the certificate request file and private key using the command below:
$ openssl req -nodes -newkey rsa:2048 -out cert_name.csr -keyout cert_name.key
You should replace cert_name with a name appropriate for your environment.
The command will generate the two files (cert_name.csr and cert_name.key) in the current path location. Using the cert_name.csr, secure a digital certificate either from an internal CA to your organization or a public Certificate Authority.
In order to manually apply the new certificate the two files below need to be replaced in the ECX appliance:
/opt/ECX/virgo/configuration/ecx-beta.key
/opt/ECX/virgo/configuration/ecx-beta.crt
For safekeeping, create copies of those files prior to replacing them. Replace the key file with the new key that was generated from the openssl request command above, replace the crt file with the certificate that you have received from the CA. Ensure the file names are still ecx-beta.* You will likely have to rename to match.
Restart Virgo so that the new certificate is loaded.
service virgo stop
service virgo start
The new certificate should now be visible while connecting to the appliance via an https session.