Cisco Cisco Expressway
Managing the trusted CA certificate list
The
Trusted CA certificate
page (
Maintenance > Security certificates > Trusted CA certificate
) allows
you to manage the list of certificates for the Certificate Authorities (CAs) trusted by this Expressway.
Certificates presented to the Expressway must be signed by a trusted CA on this list and there must be a full
chain of trust (intermediate CAs) to the root CA.
Certificates presented to the Expressway must be signed by a trusted CA on this list and there must be a full
chain of trust (intermediate CAs) to the root CA.
n
To upload a new file of CA certificates, Browse to the required PEM file and click Append CA
certificate. This will append any new certificates to the existing list of CA certificates. Note that if you are
replacing existing certificates for a particular issuer and subject, you have to manually delete the previous
certificates.
certificate. This will append any new certificates to the existing list of CA certificates. Note that if you are
replacing existing certificates for a particular issuer and subject, you have to manually delete the previous
certificates.
n
To replace all of the currently uploaded CA certificates with the system's original list of trusted CA
certificates, click Reset to default CA certificate.
certificates, click Reset to default CA certificate.
n
To view the entire list of currently uploaded trusted CA certificates, click Show all (decoded) to view it in a
human-readable form, or click Show all (PEM file) to view the file in its raw format.
human-readable form, or click Show all (PEM file) to view the file in its raw format.
n
To view an individual trusted CA certificate, click on View (decoded) in the row for the specific CA
certificate.
certificate.
n
To delete one or more CA certificates, tick the box(es) next to the relevant CA certificate(s) and click
Delete.
Delete.
Cisco Expressway Certificate Creation and Use
Page 10 of 25
Loading certificates and keys onto Expressway