Creating a self-signed certificate – Allied Telesis AT-S63 User Manual

AT-S63 Management Software Menus Interface User’s Guide

Section IX: Management Security

803

Creating a Self-signed Certificate

This section contains the procedure for creating a self-signed certificate.
Please review the following before you perform the procedure:

ˆ

For a general review of all the steps to configuring the switch for a self-
signed certificate, refer to “General Steps for a Self-signed Certificate”
on page 766.)

ˆ

The switch’s time and date must be set before you create a certificate.
You can set this manually or you can configure the switch to obtain the
date and time from an SNTP server on your network. For instructions,
refer to “Setting the System Time” on page 66.

ˆ

You must generate an encryption key pair before creating a certificate.
For instructions, refer to “Creating an Encryption Key” on page 777.

ˆ

During this procedure you are prompted to enter the ID number of the
encryption key pair to be used to create the certificate. If you have
forgotten the ID number of the key, refer to “Creating an Encryption
Key” on page 777 to view key ID numbers.

To create a self-signed certificate, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

2. From the Security and Services menu, type 7 to select Keys/

Certificates Configuration.

The Keys/Certificates Configuration menu is shown in Figure 260 on
page 777.

Note

You can specify the distinguished name for the certificate from this
menu by selecting option 1, Distinguished Name, in the Keys/
Certificates Configuration menu and entering the name. Or, you can
wait and specify the distinguished name later in this procedure. For
information about distinguished names, refer to “Distinguished
Names” on page 793.

3. From the Keys/Certificate menu, type 3 to select Public Key

Infrastructure (PKI) Configuration.