Raritan dominion kx III Administrator's Manual page 218

Chapter 4: KX III Administration
206
f. Country (ISO code) - The country where the organization is
located. This is the two-letter ISO code, e.g. DE for Germany, or
US for the U.S.
g. Challenge Password - Some certification authorities require a
challenge password to authorize later changes on the certificate
(e.g. revocation of the certificate). Applicable when generating a
CSR for CA Certification.
h. Confirm Challenge Password - Confirmation of the Challenge
Password. Applicable when generating a CSR for CA
Certification.
i. Email - The email address of a contact person that is responsible
for the KX III and its security.
j. Key length - The length of the generated key in bits. 1024 is the
default. Up to 4096 is supported.
3. To generate, do one of the following:

To generate self-signed certificate, do the following:
a. Select the Create a Self-Signed Certificate checkbox if you need
to generate a self-signed certificate. When you select this option,
the KX III generates the certificate based on your entries, and
acts as the signing certificate authority. The CSR does not need
to be exported and used to generate a signed certificate.
b. Specify the number of days for the validity range. Ensure the KX
III date and time are correct. If the date and time are not correct,
the certificate's valid date range may not be calculated correctly.
c. Click Create.
d. A confirmation dialog is displayed. Click OK to close it.
e. Reboot the KX III to activate the self-signed certificate.

To generate a CSR to send to the CA for certification:
a. Click Create.