Cisco Cisco Email Security Appliance C650 Guía Del Usuario
23-5
AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide
Chapter 23 Encrypting Communication with Other MTAs
Obtaining Certificates
Figure 23-2
View Certificate Page
Step 6
Enter a name for the certificate. AsyncOS assigns the common name previously entered by default.
Step 7
If you want to submit a CSR for the self-signed certificate to a certificate authority, click Download
Certificate Signing Request to save the CSR in PEM format to a local or network machine.
Certificate Signing Request to save the CSR in PEM format to a local or network machine.
Step 8
Submit and commit your changes.
When the certificate authority returns the trusted public certificate signed by a private key, upload it by
clicking on the certificate’s name on the Certificates page and entering the path to the file on your local
machine or network. Make sure that the trusted public certificate that you receive is in PEM format or a
format that you can convert to PEM using before uploading to the appliance. (Tools for doing this are
included with OpenSSL, free software from http://www.openssl.org.)
clicking on the certificate’s name on the Certificates page and entering the path to the file on your local
machine or network. Make sure that the trusted public certificate that you receive is in PEM format or a
format that you can convert to PEM using before uploading to the appliance. (Tools for doing this are
included with OpenSSL, free software from http://www.openssl.org.)
Uploading the certificate from the certificate authority overwrites the existing certificate. You can also
upload an intermediate certificate related to the self-signed certificate. You can use the certificate with
a public or private listener, an IP interface’s HTTPS services, the LDAP interface, or all outgoing TLS
connections to destination domains.
upload an intermediate certificate related to the self-signed certificate. You can use the certificate with
a public or private listener, an IP interface’s HTTPS services, the LDAP interface, or all outgoing TLS
connections to destination domains.
Importing a Certificate Using the GUI
AsyncOS also allows you to import certificates saved in the PKCS #12 format to use on your appliance.
Procedure
Step 1
Navigate to the Network > Certificates page.
Step 2
Click Add Certificate.
Step 3
Select the Import Certificate option.
Step 4
Enter the path to the certificate file on your network or local machine.
Step 5
Enter the password for the file.
Step 6
Click Next to view the certificate’s information.
Step 7
Enter a name for the certificate.
AsyncOS assigns the common name by default.