HP FlexNetwork NJ5000 User Manual page 340

5g poe+ walljack
Table of Contents

Advertisement

Step
Retrieving the CA
4.
certificate
Requesting a local
5.
certificate
Destroying the RSA key
6.
pair
Retrieving and displaying
7.
a certificate
Retrieving and displaying
8.
a CRL
Remarks
By default, no local RSA key pair exists.
Generating an RSA key pair is an important step in certificate request. The
key pair includes a public key and a private key. The private key is kept by
the user, and the public key is transferred to the CA along with some other
information.
IMPORTANT:
If a local certificate already exists, you must remove the certificate before
generating a new key pair, so as to keep the consistency between the key
pair and the local certificate.
Required.
Certificate retrieval serves the following purposes:
Locally store the certificates associated with the local security
domain for improved query efficiency and reduced query count,
Prepare for certificate verification.
IMPORTANT:
If a local CA certificate already exists, you cannot perform the CA
certificate retrieval operation. This will avoid possible mismatch between
certificates and registration information resulting from relevant changes.
To retrieve the CA certificate, you must remove the CA certificate and
local certificate first.
Required.
When requesting a certificate, an entity introduces itself to the CA by
providing its identity information and public key, which will be the major
components of the certificate.
A certificate request can be submitted to a CA in online mode or offline
mode.
In online mode, if the request is granted, the local certificate will be
retrieved to the local system automatically.
In offline mode, you must retrieve the local certificate by an
out-of-band means.
IMPORTANT:
If a local certificate already exists, you cannot perform the local certificate
retrieval operation. This will avoid possible mismatch between the local
certificate and registration information resulting from relevant changes. To
retrieve a new local certificate, you must remove the CA certificate and
local certificate first.
Optional.
Destroy the existing RSA key pair and the corresponding local certificate.
If the certificate to be retrieved contains an RSA key pair, you must
destroy the existing key pair. Otherwise, the retrieving operation will fail.
Optional.
Retrieve an existing certificate.
Optional.
Retrieve a CRL and display its contents.
328

Hide quick links:

Advertisement

Table of Contents
loading

Table of Contents