Generating an enrollment request, In “generating an – Allied Telesis AT-S63 User Manual

Page 808

Advertising
background image

Chapter 34: PKI Certificates and SSL

808

Section VIII: Management Security

Generating an Enrollment Request

To request a certificate from a CA, you need to generate an enrollment
request. The request contains the public key for the certificate, a
distinguished name, and other information. The request is stored as a file
with a “.csr” extension in the AT-S63 file system, from where you can
upload it onto your management station or TFTP server for submission to
the CA.

ˆ

During this procedure you are prompted to enter the ID number of the
encryption key pair you want to use to create the enrollment request. If
you have forgotten the ID number, refer to “Displaying the Encryption
Keys” on page 779 to view key ID numbers.

ˆ

You must first create a key pair before performing this procedure. For
instructions, refer to “Creating an Encryption Key” on page 767.

ˆ

For a review of all the steps to creating an enrollment request and
downloading a certificate from a CA onto a switch, refer to “General
Steps for a Public or Private CA Certificate” on page 756.

To generate an enrollment request, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

The Security and Services menu is shown in Figure 87 on page 291.

2. From the Security and Services menu, type 7 to select Keys/

Certificates Configuration.

The Keys/Certificates Configuration menu is shown in Figure 266 on
page 767.

3. From the Keys/Certificates Configuration menu, type 1 to select Switch

Distinguished Name (DN).

The following prompt is displayed:

Enter new DN (128 chars max) ->

4. Enter a name. An enrollment request must have a distinguished name.

For information, refer to “Distinguished Names” on page 783.

5. Type 3 to select Public Key Infrastructure (PKI) Configuration.

The Public Key Infrastructure (PKI) Configuration menu is shown in
Figure 272 on page 794.

6. From the Public Key Infrastructure (PKI) Configuration menu, type 3 to

select Generate Enrollment Request.

Advertising
Popular Brands
Popular manuals