Signing csrs – Nortel Networks NN46120-104 User Manual
Page 124
124
Certificates and Client Authentication
Signing CSRs
This feature is primarily used when you have configured the virtual SSL
server to perform end to end encryption, and you want to sign a CSR
(Certificate Signing Request) generated on a backend web server by using
a CA certificate on the VPN Gateway.
Step
Action
1
Specify the CA certificate that you want to use for signing
the CSR.
>> Main# cfg/cert 1
>> Certificate 1# sign
2
Paste the CSR.
Open the CSR file in a text editor and copy the entire contents,
including the text "-----BEGIN CERTIFICATE REQUEST-----"
and "-----END CERTIFICATE REQUEST-----". Having pasted the
CSR, press ENTER to create a new line and type three periods
(...). Finally press ENTER once again.
3
Apply the changes.
In the preceding example, the newly signed certificate is saved
as certificate number 3. Use the
export
command to export the
signed certificate to a file. The signed CSR can then be installed
on the backend web server as a server certificate.
4
Specify the certificate you used for signing the CSR is
specified as a CA certificate on the virtual SSL server.
Nortel VPN Gateway
User Guide
NN46120-104
02.01
Standard
14 April 2008
Copyright © 2007-2008 Nortel Networks
.