Nortel Networks 4050 Manual De Usuario
580 Chapter 11 Managing certificates
320818-A
•
to generate a CSR for a new certificate, <
cert id
> is an unused
certificate number
•
to generate a CSR to renew an existing certificate, <
cert id
> is the
existing certificate number
2
Prepare the CSR. Enter the following command:
/cfg/cert #/request
You are prompted to enter the certificate request information.
explains the required parameters. The combined length of the parameters
cannot exceed 225 bytes.
cannot exceed 225 bytes.
Table 121
CSR information
Prompt
Description
Country Name (2 letter code):
http://www.iana.org
.
State or Province Name (full
name):
name):
The name of the state or province where the head
office of the organization is located. Enter the full name
of the state or province.
office of the organization is located. Enter the full name
of the state or province.
Locality Name (e.g., city):
The name of the city where the head office of the
organization is located.
organization is located.
Organization Name (e.g.,
company):
company):
The registered name of the organization. The
organization must own the domain name that appears
in the common name of the web server. Do not
abbreviate the organization name and do not use any
of the following characters:
organization must own the domain name that appears
in the common name of the web server. Do not
abbreviate the organization name and do not use any
of the following characters:
< > ~ ! @ # $ % ^ * / \ ( ) ?
Organizational Unit Name (e.g.,
section):
section):
The name of the department or group that uses the
secure web server.
secure web server.
Common Name (e.g., your
name or your server's
hostname):
name or your server's
hostname):
The name of the web server as it appears in the URL.
The name must be the same as the domain name of
the web server that is requesting a certificate. If the
web server name does not match the common name in
the certificate, some browsers will refuse a secure
connection with your site. Do not enter the protocol
specifier (http://) or any port numbers or pathnames in
the common name. Wildcards (such as * or ?) and IP
address are not allowed.
The name must be the same as the domain name of
the web server that is requesting a certificate. If the
web server name does not match the common name in
the certificate, some browsers will refuse a secure
connection with your site. Do not enter the protocol
specifier (http://) or any port numbers or pathnames in
the common name. Wildcards (such as * or ?) and IP
address are not allowed.
E-mail Address:
The user’s e-mail address.