Key and Certificate
Configuration
Scenarios
Creating Self-Signed
Certificates
The first scenario shows how to generate self-signed certificates. The
second scenario shows how to install CA-signed certificates using
PKCS #12 object files, and the third scenario shows how to install
CA-signed certificates using CSRs (PKCS #10 object files) and PKCS #7
object files.
(For SSH configuration information, see "Managing SSH" on page 83.)
To manage the security of the WX switch for administrative access by
3Com Wireless Switch Manager and Web View, and the security of
communication with 802.1X users and Web AAA users, create Admin,
EAP, and Web AAA public-private key pairs and self-signed certificates.
Follow these steps:
1 Set time and date parameters, if not already set. (See "Configuring and
Managing Time Parameters" on page 93.)
2 Generate public-private key pairs:
You must paste the entire block, from the beginning
-----BEGIN CERTIFICATE REQUEST----- to the end
-----END CERTIFICATE REQUEST-----.
# crypto generate key admin 1024
key pair generated
You must paste the entire block, from the beginning
-----BEGIN CERTIFICATE REQUEST----- to the end
-----END CERTIFICATE REQUEST-----.
# crypto generate key eap 1024
key pair generated
You must paste the entire block, from the beginning
-----BEGIN CERTIFICATE REQUEST----- to the end
-----END CERTIFICATE REQUEST-----.
# crypto generate key webaaa 1024
key pair generated
3 Generate self-signed certificates:
You must paste the entire block, from the beginning
-----BEGIN CERTIFICATE REQUEST----- to the end
-----END CERTIFICATE REQUEST-----.
Key and Certificate Configuration Scenarios
267