Nortel Networks 5500 series User Manual

Page 309

Advertising
background image

Managing private keys and certificates

309

b Save the file with a

.csr

extension. Nortel recommends

using a file name that indicates the server on which the
certificate is to be used.

6

Save the private key to a file.

If you intend to use the same certificate number when you add
the returned certificate to the Nortel SNAS, perform this step only
if you want to create a backup copy of the private key.

If you do not intend to use the same certificate number when
you add the returned certificate to the Nortel SNAS, you must
perform this step in order to create the key file. When you add
the returned certificate to the Nortel SNAS using a different
certificate number, you will have to associate the private key with
the new certificate by pasting or importing the contents of the key
file (see

“Installing certificates and keys” (page 299)

).

a

Display the certificate and key (see

“Displaying or saving a

certificate and key” (page 316)

).

b Copy the private key, including the

-----BEGIN RSA

PRIVATE KEY-----

and

-----END RSA PRIVATE

KEY-----

lines, and paste it into a text editor.

c

Save the text editor file with a

.pem

extension. Nortel

recommends using the same file name that you defined for
the

.csr

file (see

step 5

), so the connection between the two

files is obvious.

7

Submit the CSR to a CA such as Entrust or VeriSign.

a

In a text editor, open the

.csr

file you created in

step 5

.

b Copy the entire CSR, including the

-----BEGIN

CERTIFICATE REQUEST-----

and -----END CERTIFICATE

REQUEST-----, lines.

c

Use your web browser to access the CA web site and follow
the online instructions. The process for submitting the CSR
varies with each CA. When prompted, paste the CSR as
required in the CA online request process. If the CA requires
you to identify a server software vendor whose software you
used to generate the CSR, specify Apache.

8

The CA processes the CSR and returns a signed certificate.
Create a backup copy of the certificate (see

“Displaying or

saving a certificate and key” (page 316)

).

The certificate is ready to be added into the Nortel SNAS cluster
(see

“Adding a certificate to the Nortel SNAS ” (page 310)

).

--End--

Nortel Secure Network Access Switch

Using the Command Line Interface

NN47230-100

03.01

Standard

28 July 2008

Copyright © 2007, 2008 Nortel Networks

.

Advertising
This manual is related to the following products:

450 series, 325 series, 425 series

Popular Brands
Popular manuals