Support Importing CA-Signed Certificates
Zyxel Employee
Currently, Zyxel switch only supports self-signed certificates.
Therefore, user @ihr would like to request adding support for importing CA-signed certificates that include an intermediate CA chain (PKCS12 format) into the switch.
This suggestion originated from the post found here:
Import certificate - ERROR: Import custom CA fail — Zyxel Community
If you have a similar use case or requirement, please show your support by leaving a comment or voting for it.
Zyxel Tina
Comments
-
Hi @Zyxel_Tina ,
You have my absolute full support for this! I have just voted.
I recently submitted a similar feature request specifically for the new GS1200-8 v3, but this is clearly a necessity across the entire Zyxel switch lineup.
In my environment (and many Prosumer/SMB setups), we use systems like OPNsense as an Internal Certificate Authority and Let's Encrypt for local domain management. Being forced to use hardcoded self-signed certificates completely breaks the Zero-Trust architecture and results in constant browser warnings.
Supporting the PKCS12 format (to include the intermediate chain) is a brilliant approach. If the WebUI could support either PKCS12 or the standard PEM format (.crt + .key), it would perfectly solve the issue for everyone.
Please urge the development team to implement this feature, and please consider rolling it out to the entry-level Web-Managed series (like the GS1200 v3) as well, not just the high-end models. Thank you for listening to the community!0
Freshman Member
Categories
- All Categories
- 442 Beta Program
- 3K Nebula
- 223 Nebula Ideas
- 129 Nebula Status and Incidents
- 6.6K Security
- 637 USG FLEX H Series
- 357 Security Ideas
- 1.8K Switch
- 86 Switch Ideas
- 1.4K Wireless
- 54 Wireless Ideas
- 7K Consumer Product
- 301 Service & License
- 494 News and Release
- 93 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 88 About Community
- 109 Security Highlight
