How to Install a TLS/SSL Certificate on SonicWall

The following instructions will guide you through the SSL Certificate installation process on SonicWall. If you have more than one server or device, you will need to install the certificate on each server or device you need to secure.

What You'll Need

  1. Your server certificate file
    This is the TrustCor certificate you received for your domain.
  2. The CA intermediate certificate bundle
    This bundle file allows the devices connecting to your server to identify TrustCor as the issuing CA. If you downloaded the pem-chain file, it will contain the Intermediate certificate(s) bundled with your domain's certificate.
  3. Your private key
    This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it.

Installation Instructions

  1. Rename your certificate files
    Rename the extension on your certificate files from .pem to .crt (If you already have the files saved as .crt you can skip this step).

    Next, Rename the your server certificate file to server.crt . This is a specific SonicWall requirement.
  2. Create a Zip Folder
    Next, create a zip file folder with two files: server.crt (your SSL certificate) and server.key (your private key). Tip: Copy both files into a new folder, select them (ctrl+a), right-click the selection and click to Send to > Compressed Folder
  3. Log into your SonicWall SSL-VPN dashboard
  4. Click on Systems to expand the menu, and then click Certificates
  5. On the new page, in the Server Certificates section, press the Import Certificate button
  6. Start with your SSL certificate file. Select Import Certificate > Browse and find the zip file you've just created. Click Upload. If the upload is successful, the certificate will appear in System > Certificates > Server Certificates
  7. Next, under Additional CA Certificates, click Import CA certificate. In the new window locate and upload your CA bundle file.
    Note: The file named pem-chain contains your server and the CA intermediate certificates. While uploading them is optional, older browser versions may not trust your SSL certificate unless you provide the CA bundle file.
  8. Now that you've uploaded the SSL files, it's time to configure your certificate. On the System > Certificates page, in the Server Certificates menu, locate your new SSL Certificate, and click the Configure (right-side) icon
  9. If you created a password during the CSR code generation, please enter it and click Submit; otherwise, continue with the next step
  10. From System > Certificates choose the SSL Certificate you want to configure and click Apply in the top right corner
  11. SonicWall will ask you to restart the server. If you did not receive the "restart" message, expand the System menu, and click Restart

Congratulations! You've successfully installed the SSL Certificate on SonicWall SSL-VPN appliance. Remember, you may need to restart your appliance for changes to take effect.