Cisco Cisco Email Security Appliance C160 Guía Del Usuario
20-21
User Guide for AsyncOS 9.7 for Cisco Email Security Appliances
Chapter 20 S/MIME Security Services
S/MIME Certificate Requirements
Certificate Requirements for Signing
The S/MIME certificate for signing must contain the following information:
For detailed information about S/MIME certificates, see RFC 5750: Secure/Multipurpose Internet Mail
Extensions (S/MIME) Version 3.2 - Certificate Handling.
Extensions (S/MIME) Version 3.2 - Certificate Handling.
Certificate Requirements for Encryption
The S/MIME certificate for encryption must contain the following information:
Common Name
The fully qualified domain name.
Organization
The exact legal name of the organization.
Organizational Unit
Section of the organization.
City (Locality)
The city where the organization is legally located.
State (Province)
The state, county, or region where the organization is legally located.
Country
The two letter ISO abbreviation of the country where the organization is
legally located.
legally located.
Duration before expiration
The number of days before the certificate expires.
Subject Alternative
Name(Domains)
Name(Domains)
Name of the domain from which you plan to send signed messages.
Examples include
Examples include
domain.com
and
*.domain.net
. For multiple entries,
use a comma-separated list.
Subject Alternative
Name(Email)
Name(Email)
Email address of the user who is planning to send signed messages, for
example,
example,
user@somedomain.com
. For multiple entries, use a
comma-separated list.
Private Key Size
Size of the private key to generate for the CSR.
Key Usage
Key usage is a restriction method that determines what a certificate can be
used for. If the key usage extension is specified, the following bits:
used for. If the key usage extension is specified, the following bits:
digitalSignature
and
nonRepudiation
must be set.
If the key usage extension is not specified, receiving clients must presume
that the
that the
digitalSignature
and
nonRepudiation
bits are set.
Common Name
The fully qualified domain name.
Organization
The exact legal name of the organization.
Organizational Unit
Section of the organization.
City (Locality)
The city where the organization is legally located.
State (Province)
The state, county, or region where the organization is legally located.
Country
The two letter ISO abbreviation of the country where the organization is
legally located.
legally located.
Duration before expiration
The number of days before the certificate expires.