Cisco Cisco Identity Services Engine 1.3 전단

 

 

Cisco Systems © 2015 

11 페이지  

보안

 액세스 방법 가이드 

9단계

  pxGrid 클라이언트 인증서를 ID 키 저장소로 가져옵니다. 

Enter keystore password:  cisco123 

Certificate already exists in keystore under alias <1> 

Do you still want to add it? [no]:  yes 

Certificate was added to keystore 

 

Note: If you receive the following message the certficate was already added to a pre-existing keystore, you 

can say “no” and still be okay. I selected “yes” so we can verify thay the certificate was added later on. 

10단계

  CA 루트 인증서를 트러스트된 키 저장소에 추가합니다. CA 루트 인증서도 트러스트되어야 합니다. 

Enter keystore password:  cisco123 

Owner: CN=lab6-WIN-BG7GPQ053ID-CA, DC=lab6, DC=com 

Issuer: CN=lab6-WIN-BG7GPQ053ID-CA, DC=lab6, DC=com 

Serial number: 448a6d6486c91cb14c6888c127d16c4e 

Valid from: Thu Nov 13 20:47:06 EST 2014 until: Wed Nov 13 20:57:06 EST 2019 

Certificate fingerprints: 

 

 MD5:  41:10:8A:F5:36:76:79:9C:2C:00:03:47:55:F8:CF:7B 

 

 SHA1: 9D:DA:06:AF:06:3F:8F:5E:84:C7:F4:58:50:95:03:22:64:48:96:9F 

 

 SHA256: 

DB:28:50:D6:47:CA:C0:6A:E9:7B:87:B4:0E:9C:3A:C1:A2:61:EA:D1:29:8B:45:B4:76:4B:DA:2A:F1:D8:E0:A3 

 

 Signature algorithm name: SHA256withRSA 

 

 Version: 3 

 

Extensions:  

 

#1: ObjectId: 1.3.6.1.4.1.311.21.1 Criticality=false 

0000: 02 01 00                                           ... 

 

 

#2: ObjectId: 2.5.29.19 Criticality=true 

BasicConstraints:[ 

  CA:true 

  PathLen:2147483647 

] 

 

#3: ObjectId: 2.5.29.15 Criticality=false 

KeyUsage [ 

  DigitalSignature 

  Key_CertSign 

  Crl_Sign 

] 

 

#4: ObjectId: 2.5.29.14 Criticality=false 

SubjectKeyIdentifier [ 

KeyIdentifier [ 

0000: A9 C7 8E 26 9C F5 37 0A   E6 5A 15 36 26 D4 A2 06  ...&..7..Z.6&... 

0010: 6A C8 79 2C                                        j.y, 

] 

] 

 

Trust this certificate? [no]:  yes 

Certificate was added to keystore