Part 3: How to Create a Certificate Authority (CA) and Certificates in OCI

Author: Jason Beattie

In this section, we’ll walk through the steps to create a Certificate Authority (CA) and generate certificates in Oracle Cloud Infrastructure (OCI). These certificates will later be used to configure a Load Balancer, which we’ll cover in Part 4.

Step 1: Set Up the Certificate Authority (CA)

1. Navigate to the Certificates Service:

   
   

   • Log in to your OCI Console.

   • Go to Identity & Security > Certificates.

     
     

2. Create a Certificate Authority:

   
   

   • Click Create Certificate Authority.

   • Select Internal CA to use OCI’s built-in CA service.

   • Fill in the required details:

     • Name: Enter a unique name for your CA.

     • Description: Optionally, provide a description.

     • Key Algorithm: Choose the desired key algorithm (e.g., RSA 2048).

     • Validity Period: Define how long the CA will remain valid.

       
       

3. Review and Create:

   
   

   • Confirm the configuration details.

   • Click Create to generate the CA.

     
     

Step 2: Generate a Certificate from the CA

1. Request a Certificate:

   
   

   • Go to Certificates under the Certificates service.

   • Click Request a Certificate.

     
     

2. Configure the Certificate:

   
   

   • Certificate Name: Provide a name for the certificate.

   • Certificate Authority: Select the CA you created earlier.

   • Certificate Type: Choose SSL Certificate.

   • Common Name (CN): Enter the fully qualified domain name (FQDN) of the application or service.

     
     

3. Generate the Certificate:

   • Review the details and submit the request.

   • Once approved, OCI will generate the certificate.

   
   

   Step By step as follows:

   

Next Steps

With your CA and certificates now created, you are ready to move on to Part 4, where we’ll use these certificates to set up a secure Load Balancer in OCI.