Nortel Networks 4050 ユーザーズマニュアル
Chapter 11 Managing certificates 573
Nortel Secure Network Access Switch 4050 User Guide
Creating certificates
The basic steps to create a new certificate are:
1
Generate a Certificate Signing Request (CSR) (see
2
Send the CSR to a Certificate Authority (CA), such as Entrust or VeriSign, for
certification (see
certification (see
3
Install the signed certificate on the Nortel SNAS 4050 cluster (see
).
4
Map the installed certificate to the Nortel SNAS 4050 portal server (see
).
Installing certificates and keys
There are two ways to install a certificate and key in the Nortel SNAS 4050
cluster:
cluster:
•
by pasting (see
•
by importing from a TFTP/FTP/SCP/SFTP server (see
or
When you generate the CSR, the private key is created and stored in encrypted
form on the Nortel SNAS 4050 using the specified certificate number. After you
receive the certificate, which contains the corresponding public key, use the same
certificate number when you add the certificate to the Nortel SNAS 4050.
Otherwise, the private key and the public key in the certificate will not match.
form on the Nortel SNAS 4050 using the specified certificate number. After you
receive the certificate, which contains the corresponding public key, use the same
certificate number when you add the certificate to the Nortel SNAS 4050.
Otherwise, the private key and the public key in the certificate will not match.
If you do not generate a CSR but obtain the certificate by other means, you must
take additional steps to add a private key that corresponds to the public key of the
certificate (see
take additional steps to add a private key that corresponds to the public key of the
certificate (see