diff --git a/src/app/keygen/keygen.component.ts b/src/app/keygen/keygen.component.ts
index 2c083c2d623b2a349e1ae69b22f89e0d7a11252b..e8add098bb0952bccfe5e8f9f5cf6c773a4181d1 100644
--- a/src/app/keygen/keygen.component.ts
+++ b/src/app/keygen/keygen.component.ts
@@ -107,11 +107,14 @@ export class KeygenComponent implements OnInit, OnDestroy {
   }
 
   getCert(token: AuthToken, key: any, apiserver: APIServer): Observable<any> {
-    let headers = new HttpHeaders();
+    let headers = new HttpHeaders({'Authorization':'Bearer '+token.token});
     let options = { headers: headers, withCredentials: false};
-    let data = {'token': token.token, 'pubkey': key.public, 'signing_url': token.sshauthzservice.sign};
-    return this.http.post<any>(apiserver.tes+'/getcert',data, options).pipe(
-      map((v) => v.cert),
+    var now = new Date()
+    var end = new Date(now.getTime() + 24*60*60*1000); //request a certificate valid for 24 hours
+    let data = {'public_key': key.public, 'end': end.toISOString()};
+    return this.http.post<any>(token.sshauthzservice.sign,data, options).pipe(
+      tap((v) => console.log('in getCert',v)),
+      map((v) => v.certificate),
       catchError((e) => { console.error(e); return throwError(token) })
     )
   }