Using OpenSSL to Create and Upload Certificates to TM-Printers
This document details a simple process to create and upload a certificate to the following products/interfaces:
TM-P80, TM-P60, TM-P20
This guide was produced using a TM-m30 printer with Google Chrome 55 running on Ubuntu Linux 16.04 LTS.
The listed TM-Printers require all cryptography objects to be bundled as a single archive file. This is achieved using the “PKCS #12” archive file format to collect the multiple data files together.
This guide presents a simple repackaging of the private key and certificate into the required archive format.
In recent years, the creators of web browsers have worked to make their offerings more secure. In regard to HTTPS, the goal was not only to make the requirements more stringent but also to make users less likely to simply ‘click through’ errors, making themselves more vulnerable to security problems. Often, it may be necessary to upload customised cryptography objects to the printer to ensure not only security, but also compatibility with modern browsers
The following procedure is an example of a PKCS #12 archive creation, upload and select. This can be especially useful for complex scenarios, such as where certificates are signed as part of a trust chain: the entire chain can be included within the archive.
This is not a guide to OpenSSL and the systems integrator should make appropriate security arrangements of their own.
The below steps will generate keys and certificates, package them in a PKCS#12 archive, upload them to the printer and select them in WebConfig.
Generate a Private Key and Certificate
The following line generates a key and a signed certificate, packaged in an output .pem file which contains both key and certificate.