Cisco Cisco Email Security Appliance C170 Guía Del Usuario
24-6
Cisco AsyncOS 9.5 for Email User Guide
Chapter 24 Encrypting Communication with Other MTAs
Working with Certificates
If you are acquiring or creating a certificate for the first time, search the Internet for “certificate authority
services SSL Server Certificates,” and choose the service that best meets the needs of your organization.
Follow the service’s instructions for obtaining a certificate.
services SSL Server Certificates,” and choose the service that best meets the needs of your organization.
Follow the service’s instructions for obtaining a certificate.
What To Do Next
See
.
Uploading a Certificate Signed by a Certificate Authority
When the certificate authority returns the trusted public certificate signed by a private key, upload the
certificate to the appliance.
certificate to the appliance.
You can use the certificate with a public or private listener, an IP interface’s HTTPS services, the LDAP
interface, or all outgoing TLS connections to destination domains.
interface, or all outgoing TLS connections to destination domains.
Step 1
Make sure that the trusted public certificate that you receive is in PEM format or a format that you can
convert to PEM using before uploading to the appliance. (Tools for doing this are included with
OpenSSL, free software from http://www.openssl.org.)
convert to PEM using before uploading to the appliance. (Tools for doing this are included with
OpenSSL, free software from http://www.openssl.org.)
Step 2
Upload the signed certificate to the appliance:
Note
Uploading the certificate from the certificate authority overwrites the existing self-signed
certificate.
certificate.
a.
Select Network > Certificates.
b.
Click the name of the certificate that you sent to the Certificate Authority for signing.
c.
Enter the path to the file on your local machine or network volume.
Step 3
You can also upload an intermediate certificate related to the self-signed certificate.
Related Topics
•
Importing a Certificate
AsyncOS also allows you to import certificates from other machines that are saved in the PKCS #12
format to use on your appliance.
format to use on your appliance.
To import a certificate using the CLI, use the
certconfig
command.
Note
If you are deploying a signed certificate, do not use this procedure to import the signed certificate.
Instead, see
Instead, see
.
Procedure
Step 1
Select Network > Certificates.
Step 2
Click Add Certificate.