How to import CSR to HSM cluster?

When installing certificate, the GlobalSign CA only accepts 4096 bit CSR but AWS does not generate the CSR based on keys with size of 4096 bit. Can we import custom CSR into HSM cluster? Please advise. Thank you.

Topics

Security, Identity, & Compliance

Tags

AWS CloudHSM

Language

English

rePost-User-3884549

asked a year ago327 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

CloudHSM only accept self-signed certificate OR only one level of signature (Root CA Cert + Certificate) for trust anchor certificate (customerCA.crt). In other words if customer have Root CA + Issuing CA then it will not work. But if customer have a Root CA that is also an Issuing CA, then it will work.

AWS-User-8088785

answered a year ago

Relevant content

How to Generate a CSR for ACM
Ray Gong
asked 5 months ago
RSA 4096 Private Key Import to HSM using key_mgmt_util
cloudtinker
asked 2 years ago
Signing a CSR using Private CA
Accepted Answer
Sanjeev Gopal
asked 4 years ago
Signing >4096 byte Messages With KMS Asymmetric Key Pair
mford
asked a year ago
How do I resolve the "The provided key element does not match the schema" error when importing DynamoDB tables using Hive on Amazon EMR?
AWS OFFICIALUpdated 2 years ago
How do I install AWS Private CA root and subordinate CAs in different accounts or Regions?
AWS OFFICIALUpdated 5 months ago
Can I use ACM to issue private certificates when the AWS Private CA validity is less than 13 months?
AWS OFFICIALUpdated 5 months ago
How do I resolve the "InvalidCiphertext" error when I try to use OpenSSL to import my key into AWS KMS?
AWS OFFICIALUpdated 18 days ago
How To Install TextGen WebUI on AWS
EXPERT
rsindreu
published 10 months ago
Using PowerCLI to import and export VMs with VMware Cloud on AWS
EXPERT
Patrick Kremer
published 7 months ago