When an SSL certificate expires, domain ownership changes, or you need to switch from HTTP to HTTPS, update the protocol and certificate on the domain name bound to your cloud-native gateway. This keeps traffic encrypted and maintains compliance with security standards.
Prerequisites
Before you begin, make sure that you have:
An MSE cloud-native gateway with at least one domain name bound to it
A valid SSL certificate, if you plan to switch to HTTPS
Permissions to manage the target gateway in the MSE console
Supported protocols
Cloud-native gateways support two protocols:
| Protocol | Port |
|---|---|
| HTTP | 80 |
| HTTPS | 443 |
HTTPS requires an SSL certificate. Associate a certificate with the domain name before or during the protocol change.
Change the protocol
Log on to the MSE console.
In the left-side navigation pane, choose Cloud-native Gateway > Gateways. In the top navigation bar, select a region.
On the Gateways page, click the name of the gateway.
In the left-side navigation pane, click Routes, and then click the Domain Names tab.
Click the target domain name.
On the domain name details page, click the edit icon next to Protocol.
In the Change Protocol dialog box, select a protocol and click OK.
Replace a certificate
Replace the SSL certificate when it is about to expire or when a different certificate is required.
Log on to the MSE console.
In the left-side navigation pane, choose Cloud-native Gateway > Gateways. In the top navigation bar, select a region.
On the Gateways page, click the name of the gateway.
In the left-side navigation pane, click Routes, and then click the Domain Names tab.
Click the target domain name.
On the domain name details page, click Replace Certificate next to Certificate Management.
In the Change Default CA Certificate dialog box, select a certificate and click OK.
Verify the result
On the Routes page, click the Domain Names tab. Confirm that the Protocol and Certificate columns display the updated values for the domain name.