Справочник Пользователя для Black Box ET1000A
Working with Certificates for the ETEPs
EncrypTight User Guide
285
The Common Name (CN) defaults to the appliance name; it cannot be set as a preference. For
information about other distinguished name fields, see
information about other distinguished name fields, see
. Other certificate requests preferences
are described in
NOTE
The larger the key size, the longer it takes the EncrypTight appliance to generate the certificate request
due to the complexity of the algorithm’s operations. A certificate request with a key size of 2048 bits
can take several minutes to generate.
due to the complexity of the algorithm’s operations. A certificate request with a key size of 2048 bits
can take several minutes to generate.
Figure 101 Commonly used values can be set as certificate request preferences
Managing Installed Certificates
After certificates are installed on an appliance, you can view them, export them, and delete them. See the
following topics to learn more:
following topics to learn more:
●
●
Table 78
Certificate request preference fields
Setting
Description
Key Length
The key is generated using the RSA algorithm. The RSA key size
typically refers to the size of the modulus. A larger modulus is more
secure, but the algorithm operations are slower.
• 512: Offers little security. Use only for very short-term security
• 512: Offers little security. Use only for very short-term security
needs.
• 768: Suitable for less valuable information.
• 1024: Recommended for most corporate use.
• 2048: Provides the highest level of security.
• 1024: Recommended for most corporate use.
• 2048: Provides the highest level of security.
Communication timeout
The timeout for generating a certificate signing request. The timeout is
specified in seconds. Valid values range from 30 - 300 (5 minutes).
The larger the key size, the longer it takes to generate a certificate
request.