Nortel Networks 4050 Manual De Usuario
Chapter 11 Managing certificates 581
Nortel Secure Network Access Switch 4050 User Guide
3
Generate the CSR.
After you have provided the required information, press Enter. The CSR is
generated and displayed on the screen.
generated and displayed on the screen.
4
Apply the changes.
The private key is created and stored in encrypted form on the Nortel
SNAS 4050 using the specified certificate number.
SNAS 4050 using the specified certificate number.
Subject alternative name (blank
or comma separated list of
URI:<uri>, DNS:<fqdn>,
IP:<ip-address>,
email:<email-address>):
or comma separated list of
URI:<uri>, DNS:<fqdn>,
IP:<ip-address>,
email:<email-address>):
Specifies alternative information for the subject if you
did not provide a Common Name or e-mail address.
The required information is a comma-separated list as
follows:
did not provide a Common Name or e-mail address.
The required information is a comma-separated list as
follows:
•
URI:<uri>
, a Uniform Resource Identifier
•
DNS:<fqdn>
, the fully qualified domain name
•
IP:<ip-address>
•
email:<email-address>
Generate new key pair (y/n) [y]:
Specifies whether you want to generate a new pair of
private and public keys. The default is
private and public keys. The default is
y
(yes).
If you are creating a CSR for a new certificate, accept
the option to generate a new key pair.
the option to generate a new key pair.
If a configured certificate is approaching its expiration
date and you want to renew it without replacing the
existing key, specify
date and you want to renew it without replacing the
existing key, specify
n
(no). The CSR will be based on
the existing key for the specified certificate number.
Key size [1024]:
The length of the generated key, in bits. The default
value is 1024.
value is 1024.
Request a CA certificate (y/n)
[n]:
[n]:
Specifies whether to request a CA certificate to use for
client authentication. Request a CA certificate if you
plan to issue your own server certificates or client
certificates, generating them from the requested CA
certificate. The default is
client authentication. Request a CA certificate if you
plan to issue your own server certificates or client
certificates, generating them from the requested CA
certificate. The default is
n
(no).
Specify challenge password
(y/n) [n]:
(y/n) [n]:
Specifies a password to be used during manual
revocation of the certificate.
revocation of the certificate.
Table 121
CSR information
Prompt
Description