Cisco Cisco Email Security Appliance C650 Guía Del Usuario
20-5
Cisco AsyncOS 8.0.1 for Email User Guide
Chapter 20 Encrypting Communication with Other MTAs
Obtaining Certificates
Step 8
Submit and commit your changes.
When the certificate authority returns the trusted public certificate signed by a private key, upload it by
clicking on the certificate’s name on the Certificates page and entering the path to the file on your local
machine or network. Make sure that the trusted public certificate that you receive is in PEM format or a
format that you can convert to PEM using before uploading to the appliance. (Tools for doing this are
included with OpenSSL, free software from http://www.openssl.org.)
clicking on the certificate’s name on the Certificates page and entering the path to the file on your local
machine or network. Make sure that the trusted public certificate that you receive is in PEM format or a
format that you can convert to PEM using before uploading to the appliance. (Tools for doing this are
included with OpenSSL, free software from http://www.openssl.org.)
Uploading the certificate from the certificate authority overwrites the existing certificate. You can also
upload an intermediate certificate related to the self-signed certificate. You can use the certificate with
a public or private listener, an IP interface’s HTTPS services, the LDAP interface, or all outgoing TLS
connections to destination domains.
upload an intermediate certificate related to the self-signed certificate. You can use the certificate with
a public or private listener, an IP interface’s HTTPS services, the LDAP interface, or all outgoing TLS
connections to destination domains.
Importing a Certificate Using the GUI
AsyncOS also allows you to import certificates saved in the PKCS #12 format to use on your appliance.
Procedure
Step 1
Navigate to the Network > Certificates page.
Step 2
Click Add Certificate.
Step 3
Select the Import Certificate option.
Step 4
Enter the path to the certificate file on your network or local machine.
Step 5
Enter the password for the file.
Step 6
Click Next to view the certificate’s information.
Step 7
Enter a name for the certificate.
AsyncOS assigns the common name by default.
Step 8
Submit and commit your changes.
Creating a Self-Signed Certificate or Importing a Certificate using the CLI
To create a self-signed certificate or import a certificate using the CLI, use the
certconfig
command.
Exporting a Certificate Using the GUI
AsyncOS also allows you to export certificates and save them in the PKCS #12 format.
Procedure
Step 1
Navigate to the Network > Certificates page.
Step 2
Click Export Certificate.
Step 3
Select the certificate you want to export.