Table of Contents
Advertisement
272 Chapter 14 Certificates
Table 66 My Certificate create
Label
Create a
certification
request and save it
locally for later
manual enrollment
Create a
certification
request and enroll
for a certificate
immediately online
Enrollment
Protocol
CA Server Address Enter the IP address (or URL) of the certification authority server.
CA Certificate
Request
Authentication
Key
NN47923-500
Description
Select Create a certification request and save it locally for later
manual enrollment to have the Business Secure Router generate
and store a request for a certificate. Use the My Certificate Details
screen to view the certification request and copy it to send to the
certification authority.
Copy the certification request from the My Certificate Details
screen (see
"My Certificate details" on page
the certification authority.
Select Create a certification request and enroll for a certificate
immediately online to have the Business Secure Router generate a
request for a certificate and apply to a certification authority for a
certificate.
You must have the certification authority certificate already imported
in the Trusted CAs screen.
When you select this option, you must select the certification
authority enrollment protocol and the certification authority certificate
from the drop-down list and enter the certification authority server
address (or URL). You also need to fill in the Reference Number
and Key if the certification authority requires it.
Select the certification authority enrollment protocol from the
drop-down list.
Simple Certificate Enrollment Protocol (SCEP) is a TCP-based
enrollment protocol that was developed by VeriSign and Cisco.
Certificate Management Protocol (CMP) is a TCP-based
enrollment protocol that was developed by the Public Key
Infrastructure X.509 working group of the Internet Engineering Task
Force (IETF) and is specified in RFC 2510.
Select the certification authority certificate from the CA Certificate
drop-down list.
You must have the certification authority certificate already imported
in the Trusted CAs screen. Click Trusted CAs to go to the Trusted
CAs screen where you can view (and manage) the Business Secure
Router's list of certificates of trusted certification authorities.
When you select Create a certification request and enroll for a
certificate immediately online, the certification authority can
require you to include a reference number and key to identify you
when you send a certification request. Fill in both the Reference
Number and the Key fields if your certification authority uses CMP
enrollment protocol. Just fill in the Key field if your certification
authority uses the SCEP enrollment protocol.
Type the key that the certification authority gave you.
273) and then send it to
Advertisement
Table of Contents
Troubleshooting
