Click OK.
5.
You can see that User Two has been added to the list of users.
Step 3. Enroll with Directory-Based Authentication
Now that there is a user in the authentication directory, you can test
directory-based authentication. In order to show the key length policy working,
you will request the certificate using a 512-bit key first, then change the request to
use a 1024-bit key.
Open a browser window and go to the Certificate Manager's end-entity
1.
interface:
https://<machine_name>.<your_domain>.<domain>:443
In the Enrollment panel under User Enrollment, click Directory-based.
2.
Fill out the enrollment form as follows:
3.
User ID:
User2
Password:
<User2 password>
Key Length: Select 512 (Low Grade)
Click Submit.
4.
A dialog box asks whether to generate a private key.
Using the Default Demo
Chapter 3
Default Demo Installation
147