Configure the common name for
Configure the country code for the
Configure the FQDN for the entity
Configure the IP address for the
Configure the locality of the entity
Configure the organization name
for the entity
Configure the unit name for the
Configure the state or province for
Currently, up to two entities can be created on a device.
The Windows 2000 CA server has some restrictions on the data length of a certificate request. If
the entity DN in a certificate request goes beyond a certain limit, the server will not respond to the
Configuring a PKI Domain
Before requesting a PKI certificate, an entity needs to be configured with some enrollment information,
which is referred to as a PKI domain. A PKI domain is intended only for convenience of reference by
other applications like IKE and SSL, and has only local significance.
A PKI domain is defined by these parameters:
An entity requests a certificate from a trusted CA.
A certificate applicant uses an entity to provide its identity information to a CA.
Generally, an independent RA is in charge of certificate request management. It receives the
registration request from an entity, checks its qualification, and determines whether to ask the CA to
sign a digital certificate. The RA only checks the application qualification of an entity; it does not issue
Use the command...
No common name is specified by
No country code is specified by
No FQDN is specified by default.
No IP address is specified by
No locality is specified by default.
No organization is specified by
No unit is specified by default.
No state or province is specified by