Perle Systems 5500161-40 ユーザーズマニュアル

ページ / 424
Keys and Certificates
242 
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Keys and Certificates
When you are using SSH, SSL/TLS, LDAP, or HTTPS, you will need to install keys and/or 
certificates or get server keys in order to make those options work properly. All certificates need to be 
created and all keys need to be generated outside of the IOLAN, with the exception of the IOLAN 
SSH Public keys, which already exist in the IOLAN. SSH keys must be generated using the 
OpenSSH format. 
Certificate Authorities (CAs) such as Verisign, COST, GTE CyberTrust, etc. can issue certificates. Or, 
you can create a self-signed certificate using a utility such as OpenSSL.
To download or keys, a certificate, or a CA list or to upload the IOLAN public SSH key, select 
Tools
Advanced
Keys and Certificates
.
The following fields are available:
Key / Certificate
Select the key or certificate that you want to download to the IOLAN or upload 
the IOLAN SSH Public Key.
Data Options:
z
Upload Server SSH Public Key, used for 
Console Management
 serial 
ports set to SSH connections
z
Download SSH User Public Key, used for 
Console Management
 serial 
ports set to SSH connections
z
Download SSH User Private Key, used for IOLAN Users on serial ports 
set to the 
Terminal 
profile using SSH connections
z
Download SSH Host Public Key, used for IOLAN Users on serial ports 
set to the 
Terminal 
profile using SSH connections
z
Download SSL/TLS Private Key, required if using HTTPS and/or 
SSL/TLS
z
Download SSL/TLS Certificate, required if using HTTPS and/or 
SSL/TLS
z
Download SSL/TLS CA, required if using LDAP with TLS, SSL/TLS, 
and/or X.509 certificate authentication for an IPsec tunnel
z
Upload IPsec RSA Public Key, must be installed on the remote VPN 
gateway when the 
RSA Signature
 is the IPsec tunnel authentication 
method
z
Download IPsec RSA Public Key, from the remote VPN gateway when 
RSA Signature
 is the IPsec tunnel authentication method
File Name
The file that you are going to download/upload to/from the IOLAN via TFTP.