Cisco Cisco Email Security Appliance X1070 User Guide
25-6
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 25 Encrypting Communication with Other MTAs
Working with Certificates
Uploading a Certificate Signed by a Certificate Authority
When the certificate authority returns the trusted public certificate signed by a private key, upload the
certificate to the appliance.
certificate to the appliance.
You can use the certificate with a public or private listener, an IP interface’s HTTPS services, the LDAP
interface, or all outgoing TLS connections to destination domains.
interface, or all outgoing TLS connections to destination domains.
Step 1
Make sure that the trusted public certificate that you receive is in PEM format or a format that you can
convert to PEM using before uploading to the appliance. (Tools for doing this are included with
OpenSSL, free software from http://www.openssl.org.)
convert to PEM using before uploading to the appliance. (Tools for doing this are included with
OpenSSL, free software from http://www.openssl.org.)
Step 2
Upload the signed certificate to the appliance:
Note
Uploading the certificate from the certificate authority overwrites the existing self-signed
certificate.
certificate.
a.
Select Network > Certificates.
b.
Click the name of the certificate that you sent to the Certificate Authority for signing.
c.
Enter the path to the file on your local machine or network volume.
Step 3
You can also upload an intermediate certificate related to the self-signed certificate.
Related Topics
•
Importing a Certificate
AsyncOS also allows you to import certificates from other machines that are saved in the PKCS #12
format to use on your appliance.
format to use on your appliance.
To import a certificate using the CLI, use the
certconfig
command.
Note
If you are deploying a signed certificate, do not use this procedure to import the signed certificate.
Instead, see
Instead, see
.
Procedure
Step 1
Select Network > Certificates.
Step 2
Click Add Certificate.
Step 3
Select the Import Certificate option.
Step 4
Enter the path to the certificate file on your network or local machine.
Step 5
Enter the passphrase for the file.
Step 6
Click Next to view the certificate’s information.
Step 7
Enter a name for the certificate.
AsyncOS assigns the common name by default.