SSL INSTALLATION AND CSR CREATION – BARRACUDA SPAM AND VIRUS FIREWALL 300

 

CSR CREATION FOR BARRACUDA SPAM & ANTIVIRUS 300 VERSION 5
 

To create your CSR you will need to be logged into the web interface of the Barracuda Device as an administrator.

1. Go to the Advanced tab then click Secure Administration


 

2. For Certificate type choose Trusted (Signed by a trusted CA). Then next to the Certificate Signing Request (CSR) Click on Edit Data.


 

3. Enter the information about your organization then save the CSR, and set the private key size to at least 2048 bits. After entering all of the information for your CSR, click Save Changes

  • Common name: Enter your Barracuda device's hostname (can be configured on the IP Configuration page). 
  • Country Code: Enter your two digit country code.
  • State or Province: Enter this information for the organization that the certificate will be issued to.
  • Locality (City): Enter the city/locality for the organization getting the certificate.
  • Organization (Company) Name: This should be the legal name of the company (e.g. Your Company, Inc.).
  • Organizational (Departmental) Unit: If you're not in a department, enter IT.
  • Key Size: Choose at least 2048 bits (not 1024).


 

4. Now click Download to save your CSR file. 


 

5. Change the certificate type to Private (Self-signed) then click the Download link for the private key (private_key.txt). Save this file in a secure place as it will be needed later when you go to install your SSL certificate files. 


 

6. After you receive your SSL certificate files from TRUSTZONE, you can install them.

 

INSTRUCTIONS TO INSTALL SSL CERTIFICATE BARRACUDA FIRMWARE VERSION 5
 

If you have not yet created a Certificate Signing Request (CSR) and ordered your certificate, see 
CSR Creation Barracuda Spam and Virus Firewall Version 5.

SSL INSTALLATION 

For a tutorial on installing an SSL certificate to older versions of Barracuda please see our SSL installation to older versions of Barracuda Devices page.

To install your SSL certificate file you will need to be logged into the Barracuda as an administrator.

1. Go to the Advanced tab then click Secure Administration

2. Make sure Certificate Type is Trusted (Signed by a trusted CA). 

If this isn't currently listed change the certificate type to list this and click to Save Changes. 

3. To upload your certificate file choose the following files: 

Upload Trusted Certificate: Browse to the file your_dominio_com.crt that you received from TRUSTZONE.

  • Private Key: Browse to the file private_key.txt.
  • Certificate Chain Bundle: Browse to the file IntermediateCA.crt.

Note: If you don't have your private key file, please see Barracuda CSR instructions Step 5 to download your Private key file. You will then need to change the Certificate Type back to Trusted (Signed by a trusted CA)

Then click Upload Certificate Information

Next you should see two green bars at the top that should display the text shown below: 

  • Successfully Uploaded Signed Certificate
  • Configuration updated 
     

TROUBLESHOOTING

Test your certificate by going to trustzone.ssllabs.com and entering the DNS name you are securing (e.g. barracuda.yourdomain.com, or mail.yourdomain.com) to verify the installaton is correct.

1. If your certificate did not upload correctly on step 3 above, then you will need to do the following: Log into your account, and click your order number, then click Download Certificate and click to download the following files: 

SSL certificate (your_dominio_name.crt), Intermediate Certificate, Root Certificate (TrustedRoot.crt)

2. You will need to create a combined PEM file by opeing up a text editor (e.g. Wordpad) and pasting the contents of all of the files listed below as follows: 

—–BEGIN CERTIFICATE—–
(SSL Certificate: your_dominio_com.crt)
—–END CERTIFICATE—–

—–BEGIN CERTIFICATE—–
(Intermediate Certificate 1)
—–END CERTIFICATE—–

—–BEGIN CERTIFICATE—–
(Intermediate Certificate 2)
—–END CERTIFICATE—–

—–BEGIN CERTIFICATE—–
(Trusted Root Certificate: TrustedRoot.crt)
—–END CERTIFICATE—– 

This file should then be saved as your_domain_com.pem.

3. Now upload the following files, and click Upload Certificate Information

Upload Trusted Certificate: Browse to the file your_domain_com.pem that you just created.

  • Private Key: Browse to the file private_key.txt.
  • Certificate Chain Bundle: Leave this blank.


 

Last updated: August 2, 2017