When appropriate certificate and key files for the PXE are NOT available, one of the alternatives is to create a CSR and private key on the PXE device, and send the CSR to a CA for signing the certificate.
In This Section
Creating a Certificate Signing Request
Installing a CA-Signed Certificate
See Also
Setting Up an SSL Certificate
Creating a Self-Signed Certificate
Installing Existing Key and Certificate Files
Downloading Key and Certificate Files