Generating an enrollment request, In “generating an – Allied Telesis AT-S63 User Manual

Page 812

Advertising
background image

Chapter 34: PKI Certificates and SSL

812

Section VIII: Management Security

Generating an Enrollment Request

To request a certificate from a CA, you need to generate an enrollment
request. The request contains the public key for the certificate, a
distinguished name, and other information. The request is stored as a file
with a “.csr” extension in the AT-S63 file system, from where you can
upload it onto your management station or TFTP server for submission to
the CA.

ˆ

During this procedure you are prompted to enter the ID number of the
encryption key pair you want to use to create the enrollment request. If
you have forgotten the ID number, refer to “Displaying the Encryption
Keys” on page 783 to view key ID numbers.

ˆ

You must first create a key pair before performing this procedure. For
instructions, refer to “Creating an Encryption Key” on page 771.

ˆ

For a review of all the steps to creating an enrollment request and
downloading a certificate from a CA onto a switch, refer to “General
Steps for a Public or Private CA Certificate” on page 760.

To generate an enrollment request, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

The Security and Services menu is shown in Figure 86 on page 289.

2. From the Security and Services menu, type 7 to select Keys/

Certificates Configuration.

The Keys/Certificates Configuration menu is shown in Figure 264 on
page 771.

3. From the Keys/Certificates Configuration menu, type 1 to select Switch

Distinguished Name (DN).

The following prompt is displayed:

Enter new DN (128 chars max) ->

4. Enter a name. An enrollment request must have a distinguished name.

For information, refer to “Distinguished Names” on page 787.

5. Type 3 to select Public Key Infrastructure (PKI) Configuration.

The Public Key Infrastructure (PKI) Configuration menu is shown in
Figure 270 on page 798.

6. From the Public Key Infrastructure (PKI) Configuration menu, type 3 to

select Generate Enrollment Request.

Advertising
Popular Brands
Popular manuals