Creating a CSR (Certificate Signing Request)
Log in as smeconfiguser then become root
openssl req -new -newkey rsa:2048 -nodes -out my_fqdn.com.csr -keyout my_fqdn.com.key -subj "/C=US/ST=MyState/L=MyCity/O=MyOrganization/OU=MyOrganizationalUnit/CN=my.fqdn.com"
This will generate 2 files:
Copy the file my_fqdn.com.key to the private certs folder
cp my_fqdn.com.key /etc/pki/tls/private/
Ensure the file is in the proper location before deleting it:
cat /etc/pki/tls/private/my_fqdn.com.key rm my_fqdn.com.key
Send the CSR to the Certificate Authority of choice
The certificate authority will reply with a signed public key and intermediary certs. These can be uploaded to the File Fabric when configuring via smeconfigserver.