Cisco Cisco Web Security Appliance S170 Guía Del Usuario
534
I R O N P O R T A S Y N C O S 6 . 5 F O R W E B U S E R G U I D E
I N S T A L L I N G A S E R V E R D I G I T A L C E R T I F I C A T E
When an administrator logs into the Web Security appliance using HTTPS, the appliance uses
a digital certificate to securely establish the connection with the client application. The Web
Security appliance uses the “IronPort Appliance Demo Certificate” that comes installed by
default. However, client applications are not programmed to recognize this certificate, so you
can upload a digital certificate to the appliance that your applications recognize
automatically.
a digital certificate to securely establish the connection with the client application. The Web
Security appliance uses the “IronPort Appliance Demo Certificate” that comes installed by
default. However, client applications are not programmed to recognize this certificate, so you
can upload a digital certificate to the appliance that your applications recognize
automatically.
Figure 23-18 shows the warning message that is displayed in Firefox when accessing the Web
Security appliance using the IronPort Appliance Demo Certificate.
Security appliance using the IronPort Appliance Demo Certificate.
Figure 23-18 IronPort Appliance Demo Certificate as an Unknown Authority
To configure the Web Security appliance to use a different digital server certificate, follow
these steps:
these steps:
1. Obtain a certificate and private key pair to upload. For more information, see “Obtaining
2. Upload the certificate and private key pair to the appliance. For more information, see
Obtaining Certificates
To obtain a digital certificate to upload to the appliance, you must follow these steps:
1. Generate a public-private key pair.
2. Generate a Certificate Signing Requests (CSR).
3. Contact a certificate authority (CA) to sign the certificate.