Cisco Cisco Unified MeetingPlace Web Conferencing Anleitung Für Quick Setup
Configuring SSL for the Cisco Unified MeetingPlace Application Server
Generating a Certificate Signing Request and Obtaining the Certificate
2
Generating a Certificate Signing Request and Obtaining the
Certificate
Certificate
In this task, you create a certificate signing request (CSR) that you then send to an authorized certificate
authority (CA) to apply for a digital identity certificate. The system also creates and stores a private key
file and password specifically for that certificate. When you later upload the certificate file, the system
binds the certificate file with the system-generated private key file and password to enable SSL.
authority (CA) to apply for a digital identity certificate. The system also creates and stores a private key
file and password specifically for that certificate. When you later upload the certificate file, the system
binds the certificate file with the system-generated private key file and password to enable SSL.
Before You Begin
•
If you created your own certificate and private key, then do not perform this task. Proceed to the
•
SSL must be disabled to generate CSRs.
•
The CSR and resulting certificate use the Application Server hostname that you entered for Ethernet
Port 1 (device eth0) during the operating system installation.
Port 1 (device eth0) during the operating system installation.
If you change this hostname, then you must obtain new certificates.
For information about installing the operating system, see the Installation, Upgrade, and Migration
Guide for Cisco Unified MeetingPlace at
Guide for Cisco Unified MeetingPlace at
.
•
Self-signed certificates can be used for the application server.
•
Make sure that you request a file in one of the following formats:
–
Private keys: PKCS #1, PKCS #8 (PEM or DER encoding), Java keystore
–
Certificates: X.509 (PEM or DER encoding), Java keystore
Caution
If you already installed a valid SSL certificate, then generating a new CSR will make the existing
certificate invalid. Proceed only if you are installing the certificate for the first time, if you are replacing
an expired or invalid certificate, or if you change the hostname of your Application Server.
certificate invalid. Proceed only if you are installing the certificate for the first time, if you are replacing
an expired or invalid certificate, or if you change the hostname of your Application Server.
Procedure
Step 1
Log in to the Administration Center.
Step 2
Select Certificate Management > Generate CSRs.
Step 3
Enter values in the fields on the
.
Note
Some CAs do not recognize two-letter state abbreviations, so enter the full name of the state.
Also, if you want to use any special (non-alphanumeric) characters, ask your CA for character
restrictions.
Also, if you want to use any special (non-alphanumeric) characters, ask your CA for character
restrictions.
Step 4
Select Generate CSR only once.
Step 5
Select OK.
Step 6
Select Download CSR.