As we continue to enhance our data center security, integrating our corporate Microsoft PKI with APC Smart UPS units has been a top priority. The ability to generate CSRs through the NMC Security Wizard is a solid foundation, but the manual process for bulk operations is proving to be a bottleneck.
For a few units, the process is manageable, but with deployments across multiple locations, automation becomes crucial. The idea of using a CSV for CSR creation and bulk submission to our PKI via command-line tools is appealing, but the lack of native support for bulk processing in the Security Wizard is a hurdle.
The Microsoft default ‘WebServer’ template’s two-year lifespan adds another layer of complexity. While APC units seem to accept it, custom templates result in error ‘-32’ during certificate import, leaving us in a loop of dependency on the default template and frequent renewals.
I’m curious if others have found a workaround or if APC has plans to enhance the Security Wizard with bulk processing capabilities. Additionally, having guidelines for creating custom templates that meet APC’s requirements would be invaluable.
Any insights or experiences would be greatly appreciated! Let’s collaborate to find a more efficient and scalable solution.