Export client certificate – Nortel Networks NN46120-104 User Manual

114

Certificates and Client Authentication

Export Client Certificate

Before you transfer the private key and client certificate to the subject,
you should save the key and the certificate to a file using the

export

or

display

command on the Certificate menu. The

export

command (see

following instruction) is recommended, as this provides you with the option
to select the PKCS12 file format (also known as PFX). Most Web browsers
accept importing a combined key and certificate file in the PKCS12 format.

This is how to export the client certificate to a TFTP/FTP/SCP/SFTP
server.

Step

Action

1

Specify the number of the certificate you wish to export.

When you generated the client certificate you had the option to
save it with a new certificate number. In the previous example
(Step 4), the client certificate was saved as certificate number
2. Enter this certificate number when prompted, then use the

export

command to export the certificate as a file.

>> Main# cfg/cert

Enter certificate number:

(1-) 2

>> Certificate 1# export

Select protocol (tftp/ftp/scp/sftp) [tftp]: ftp

Enter hostname or IP address of server: ftp.example.

com

2

Select the desired export format, enter a pass phrase and

specify the name of the output file.

Enter export format (pem/der/net/pkcs12): pkcs12

Enter export pass phrase: <passphrase>

Reconfirm export pass phrase: <passphrase once again>

Enter name of combined key and certificate file on

remote host:

cert.pfx

FTP User (anonymous): <FTP user name>

Password: <password>

sent 2392 bytes

--End--

Nortel VPN Gateway

User Guide

NN46120-104

02.01

Standard

14 April 2008

Copyright © 2007-2008 Nortel Networks

.