Cisco Cisco TelePresence Video Communication Server Expressway
Introduction
Cisco VCS Deployment Guide: Certificate creation and use with Cisco VCS
Page 6 of 33
Loading certificates onto Cisco VCS
The Cisco VCS uses standard X.509 certificates. The certificate information must be supplied to the
VCS in PEM format. Typically 3 elements are loaded:
VCS in PEM format. Typically 3 elements are loaded:
A list of certificates of trusted certificate authorities.
The server certificate (which is generated by the certificate authority, identifying the ID of the
certificate holder, and should be able to act as both a client and server certificate).
certificate holder, and should be able to act as both a client and server certificate).
The private key (used to sign data sent to the client, and decrypt data sent from the client,
encrypted with the public key in the server certificate). This must only be kept on the VCS and
backed up in a safe place – security of the TLS communications relies upon this being kept
secret.
encrypted with the public key in the server certificate). This must only be kept on the VCS and
backed up in a safe place – security of the TLS communications relies upon this being kept
secret.
This process is documented in “Load certificates and private key onto Cisco VCS” on page 25.