This page describes the steps for deploying a certificate with Certificate Manager. For more information on the Certificate Manager entities mentioned on this page, see How Certificate Manager works.
To deploy a certificate, you must complete the following steps:
- Optional: If you want to use a Google-managed certificate with DNS authorization, configure a DNS authorization for this certificate.
- Create a Google-managed certificate (recommended) or upload a self-managed certificate.
- Configure a certificate map for this certificate:
- Create a certificate map.
- Add the certificate map entries for hostnames that require this certificate.
- Optional: Add a certificate map entry for the primary certificate to use when the load balancer cannot find a certificate specific to the requested hostname in this certificate map.
- Verify that the certificate and its corresponding certificate map entry are active. If you are using a Google-managed certificate with load balancer authorization, the certificate only becomes active after you complete the following step and the certificate completes provisioning.
- Attach the certificate map to the desired target proxy in your load balancer configuration.
- Deploy a Google-managed certificate (tutorial)
- Deploy a self-managed certificate (tutorial)
- Manage certificates
- Manage certificate maps
- Manage certificate map entries
- Manage DNS authorizations