Symptom
Customer using a WAF (Web Application Firewall) will need to install the SSL cert in CSB and on their WAF for the site to be accessible.
What should they do to achieve this?
Environment
SAP SuccessFactors Recruiting Marketing
Resolution
Customers using a WAF may be required to upload a private key along with their certificate.
For this reason, they cannot use CSB to generate a CSR as the private key is not exposed and we will not provide it.
They must generate the CSR by other means (see KBA : 2892001 What is a CSR - Recruiting Marketing) then procure a certificate from the Certificate Authority based on this CSR along with the intermediate certificate and private key.
Once they have obtained these, they must upload them in CSB.
They must select Option 2 in the CSB SSL tool and upload all 3 files. ( See KBA 3109381 - Overview About SSL Certificates tab in CSB - Recruiting Marketing)
They must do the same on the WAF.
As this is a third party tool we cannot advise on this part, only that the private key is likely to be required but if the previous steps were followed then they will have this key ready to upload too.
Keywords
Cloudfare , KBA , LOD-SF-RMK-CER , Certificate Renewal, IP Address, Domain , How To