Destroying the RSA key pair
1.
Select Authentication > PKI from the navigation tree.
2.
Click the Certificate tab.
3.
Click Destroy Key.
4.
Click Apply to destroy the existing RSA key pair and the corresponding local certificate.
Figure 439 Key pair destruction page
Retrieving and displaying a certificate
You can retrieve an existing CA certificate or local certificate from the CA server and save it locally. To
do so, you can use offline mode or online. In offline mode, you must retrieve a certificate by an
out-of-band means like FTP, disk, email and then import it into the local PKI system. By default, the
retrieved certificate is saved in a file under the root directory of the device, and the filename is
domain-name_ca.cer for the CA certificate, or domain-name_local.cer for the local certificate.
To retrieve a certificate:
1.
Select Authentication > PKI from the navigation tree.
2.
Click the Certificate tab.
3.
Click Retrieve Cert.
Figure 440 PKI certificate retrieval page
4.
Configure the parameters as described in
5.
Click Apply.
Table 125 Configuration items
Item
Domain Name
Description
Select the PKI domain for the certificate.
Table
125.
459