Setting Up The Local Certificate Authority (Ca) - Brocade Communications Systems StoreFabric SN6500B Administrator's Manual

13. Select Save.
NOTE
Fabric OS v6.2.x uses brcduser1 as a standard user name when creating a Brocade group on
SKM/ESKM. If you downgrade to version 6.2.x, the user name is overwritten to brcduser1, and the
Brocade group user name must be changed to brcduser1. Also, the password must be changed to
!Brocade@3.

Setting up the local Certificate Authority (CA)

To create and install a local CA, perform the following steps:
1. Log in to the SKM/ESKM management web console using the admin password.
2. Select the Security tab.
3. Under Certificates & CAs, click Local CAs.
4. Enter information required by the Create Local Certificate Authority section of the window to
NOTE
Fabric OS 7.1.0 will use SHA256 signatures for the TLS certificates used to connect to the ESKM 3.0.
5. Click Create.
Fabric OS Encryption Administrator's Guide (SKM/ESKM)
53-1002721-01
The Brocade user name and password are now configured on SKM/ESKM.
create your local CA.
-
Enter a Certificate Authority Name and Common Name. These may be the same value.
-
Enter your organizational information.
-
Enter the Email Address where you want messages to the Security Officer to go.
-
Enter the Key Size. HP recommends using 2048 for maximum security.
-
Select Self-signed Root CA.
-
Enter the CA Certification Duration and Maximum User Certificate Duration. These values
determine when the certificate must be renewed and should be set in accordance with
your company's security policies. The default value for both is 3650 days or 10 years.
The new local CA displays under Local Certificate Authority List
Steps for connecting to an SKM or ESKM appliance
(Figure 86)
3
137