Create a Custom Hostname for Your Bomgar Cloud Site

To configure your Bomgar Cloud Appliance with a custom URL that matches your domain name, you can follow the steps below.

  1. Register your custom CNAME in DNS (internal and external/webhost if necessary), and point it to the Bomgar-supplied URL of your Cloud Appliance.
  2. Once the site is online, create a certificate signing request (CSR) for submission to your certificate authority.

    Note: If you are using an existing wildcard SSL certificate, you can skip to step 5.

    1. To create the CSR, log into the /login web interface of your Bomgar Cloud Appliance and go to Appliance > Security > Certificates.
    2. In the Security :: Certificate Installation section, click Create, and then fill out the CSR form.
      1. Certificate Friendly Name: Enter your requested CNAME URL.
      2. Key: 2048 or 4096. Verify with your certificate authority which key strengths they support. Larger key sizes normally require more processing overhead and may not be supported by older systems. However, smaller key sizes are likely to become obsolete or insecure sooner than larger ones.
      3. Country: Enter your organization's two-character Country code. If you are unsure of your country code, please visit www.iso.org/iso/home/standards/country_codes.htm.
      4. State/Province: Enter your State/Province name if applicable. Enter the full state name, as some certificate authorities will not accept a state abbreviation.
      5. City (Locality): Enter your City (Locality).
      6. Organization: Provide the name of your company.
      7. Organizational Unit: This is normally the group or department within the organization managing the certificate and/or the Bomgar deployment for the organization.
      8. Name (Common Name): Enter your requested CNAME URL.
      9. Subject Alternative Name: Enter your requested CNAME URL and then click Add.
    3. Click Create Certificate Request and wait for the page to refresh.
  3. Export your new CSR.
    1. Once back at the Certificates page, scroll down to the Security :: Certificate Requests section.
    2. Click the subject of your new certificate request.
    3. Select and copy the Request Data, including ----- BEGIN CERTIFICATE REQUEST ----- and ----- END CERTIFICATE REQUEST -----.
    4. Copy the text to a text editor, and do not adjust formatting.
    5. Save the document to your workstation as a plain text document such as BomgarCertRequest.txt.
  4. Obtain your SSL certificate from a certificate authority.
    1. Log into your certificate authority's website to obtain your SSL certificate.
    2. When asked to submit your CSR, paste the entire text of your Bomgar CSR into their site.
    3. If required to select a web server type, submit that the server is Apache-compatible. If given more than one Apache type as options, select Apache/ModSSL.
  5. Import your entire SSL certificate chain to your Bomgar Cloud Appliance.
    1. Log into your /login web interface and navigate to Appliance > Security > Certificates.
    2. Click Import.
    3. Browse to each of your SSL certificate files, one at a time (unzipped).
    4. Click Install Certificate if prompted.

      Note: If you are importing an SSL certificate from another server, you must import its associated private key file, as well.

  6. Send your SSL certificate chain to Bomgar Support. Bomgar needs this data to rebuild your site software.
    1. Log into your /login web interface and navigate to Appliance > Security > Certificates.
    2. Find the certificate that is Issued To the new CNAME of your appliance.
    3. Check the box on the left of this particular certificate.
    4. Click on the dropdown above, select Export, and then click Apply.
    5. On the next page, uncheck the Private Key box. Make sure to check the boxes entitled Include certificate and Include certificate chain.
    6. Click Export once more.

      Note: If you are unable to check the box Include certificate chain, then you may be missing one or more certificate segments. Please contact Bomgar Support for assistance.

      IMPORTANT!

      DO NOT send your private key to Bomgar! Private key files usually end in the .p12 extension.

    7. Send an email to Bomgar Support with the downloaded SSL certificate file attached.
  7. Bomgar Support uses your new SSL certificate data to build a custom software update. You will receive a separate email with installation instructions.
  8. Assign an IP address to the SSL certificate.
    1. After you apply the custom software update, log into your /login interface and navigate to Appliance > Security > Certificates.
    2. Click the Assign IP link next to your new certificate.
    3. On the next screen, scroll down the page, check the box for the IP address, and click Save.
  9. You should now be able to use your custom CNAME to access your Bomgar Cloud site.