Document toolboxDocument toolbox

X.509 certificates

Owned by Juan Tomás Alonso Nieto (Deactivated)
Last updated: Nov 15, 2023 by Borja Moro Moreno
3 min read
[ 1 Overview ] [ 2 Types of certificates ] [ 3 Working with certificates ] [ 4 What permissions do I need? ]

Overview

These certificates are used to make secure syslog protocol requests to Devo. You can use any of the certificate types that are generated when you create a new set to authorize your requests.

Learn more about sending data directly to Devo using the syslog protocol and other methods in this section.

Types of certificates

These are all the certificate types that you can generate in this area:

Certificate and Private key

Certificates and private keys represent both parts of a certificate, the former being the private key to the certificate and the latter being the signed certificate.

Click Certificate and Private key in a row of certificates to download the corresponding .crt and .key files. When you download the private key, you will see a window that shows the certificate password and a Download button.

JKS

A Java KeyStore (JKS) is a security certificate used for instance in TLS encryption.

Click JKS in a row of certificates to download the corresponding .jks file. You will see a window that shows the certificate password and a Download button.

BKS

BKS is a keystore format provided by the popular third-party Java cryptographic library provider BouncyCastle. It is a keystore similar to the JKS.

Click BKS in a row of certificates to download the corresponding .bks file. You will see a window that shows the certificate password and a Download button.

PKCS12

PKCS12 (also known as PKCS#12 or PFX) is a binary format for storing a certificate chain and private key in a single, encryptable file. It is a keystore similar to the JKS.

Click PKCS12 in a row of certificates to download the corresponding .pkcs12 file. You will see a window that shows the certificate password and a Download button.

Working with certificates

  • To download the Certificate Authority certificates, click Chain CA.

  • To generate a new set of certificates, click Create certificate. A new set of certificates will be generated and will appear as a new row in the table.

  • You can add tags to specific sets of certificates to filter them easily in case you have a lot of rows in the table. To do it, click the Tags column in the row where you want to add the tag, enter a keyword in the field that appears and click the + button. Note that these tags are only visible to the individual user.

  • To delete a set of certificates, click on the elipsis icon at the end of the row. Click it and select Delete.

Old certificates

Note that some of the certificates you have generated may appear as Deprecated in the list. Due to security reasons, the platform now offers certificates with stronger encryption. We strongly recommend removing them and generating new ones. However, please make sure you don't remove a certificate before being sure that you are not using it. 

What permissions do I need?

To access the X.509 certificates area to see and download existing certificates, you need the View version of the X.509 certs permission. Having the Manage version will also allow you to generate and delete them.

Â