Chapter 26: Pki Certificate Support; Manual Certificate Enrollment - Avaya 1000 Series Configuration Manual
Secure router
Hide thumbs
Also See for 1000 Series:
- Reference (700 pages) ,
- Manual (570 pages) ,
- Hardware installation and maintenance (262 pages)
Table of Contents
Advertisement
Chapter 26: PKI Certificate Support
Manual Certificate Enrollment:
1. Create a trustpoint.
2. Configure the enrollment mode to terminal.
3. Configure the subject name, ip address, fqdn, email address and key pair details.
4. Import the CA certificate.
5. Enroll the certificate request.
6. Import the router certificate.
Avaya Secure Router 1000 Series Configuration Guide
R1/configure/crypto> ca trustpoint ms2003
R1/configure/crypto/ca/trustpoint ms2003> enrollment
terminal
• R1/configure/crypto/ca/trustpoint ms2003> subject-name
"cn=orion,ou=security,o=avaya,c=us"
• R1/configure/crypto/ca/trustpoint ms2003> ip-address
10.1.1.1
• R1/configure/crypto/ca/trustpoint ms2003> fqdn avaya.com
• R1/configure/crypto/ca/trustpoint ms2003> email
test@test.com
• R1/configure/crypto/ca/trustpoint ms2003> keypair key1
rsa 1024
R1/configure/crypto> ca authenticate ms2003
Paste the Certificate in PEM format. Finger print is computed on the CA certificate,
and displayed to the user
R1/configure/crypto> ca enroll ms2003
This command generates the certificate request in PEM format.
R1/configure/crypto/ca/import ms2003> router-certificate
This command generates the certificate request in PEM format.
December 2010
173
Advertisement
Table of Contents
Troubleshooting
