The following points gives an outline of the process that is followed while installing certificates on Mashery ELB for securing traffic between client and customer's public facing hostnames.

This document provides the process to secure customer 's client facing hostnames with SSL certificates. This will allow https traffic between client and customer's public hostname.

1) Customer has to open a support case and provide the client facing hostnames that they need to secure with SSL.
2) Mashery will validate these hostnames for any existing certificates and ask the customer to provide the certificate and private key in a format that is readable by openssl commands.
3) Once customer confirms that they are ready with the certificate and private key TIBCO Mashery Support will create an SFTP account.
4) Customer will be providing TIBCO Mashery Support with the certificate and private key that needs to be installed for the host on the SFTP account.
5) TIBCO Mashery Support will verify the files provided and if all looks good will create an internal case with TIBCO Mashery SRE team.
6) Once TIBCO Mashery SRE team have installed the certificate TIBCO Mashery support will verify the installation with validations tools (Digicert, SSL checker etc.).
7) If everything looks fine Mashery Support will update the support case and notify the customer.