Cisco Cisco Identity Services Engine 1.3 전단
© 2015 思科系统公司
第
10 页
安全访问操作指南
SHA256:
C4:21:6C:6F:5B:06:F3:2C:D7:26:35:CB:BE:2B:1B:FF:0E:EE:09:91:F6:B6:54:0C:6F:63:CB:43:1F:77:F2:37
Signature algorithm name: SHA1withRSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.19 Criticality=false
BasicConstraints:[
CA:true
PathLen:2147483647
]
#2: ObjectId: 2.5.29.37 Criticality=false
ExtendedKeyUsages [
serverAuth
clientAuth
]
#3: ObjectId: 2.5.29.15 Criticality=false
KeyUsage [
DigitalSignature
Key_Encipherment
Key_Agreement
Key_CertSign
]
#4: ObjectId: 2.16.840.1.113730.1.1 Criticality=false
NetscapeCertType [
SSL server
]
#5: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: C4 F3 1A 9E 7B 1B 14 4F 51 9E A4 88 33 07 7A AC .......OQ...3.z.
0010: 75 37 36 D4 u76.
]
]
Trust this certificate? [no]: yes
Certificate was added to keystore
Johns-MacBook-Pro:bin jeppich$
Johns-MacBook-Pro:bin jeppich$ keytool -import -alias pxGridclient1 -keystore self1.jks -file self1.cer
Enter keystore password:
Certificate already exists in keystore under alias <1>
Do you still want to add it? [no]: n
Certificate was not added to keystore
第
9 步 将 pxGrid 客户端证书导入到身份密钥库中。
keytool -import -alias pxGridclient1 -keystore self1.jks -file self1.cer
Enter keystore password:
Certificate already exists in keystore under alias <1>
Do you still want to add it? [no]: n
Certificate was not added to keystore
注:如果您收到表明证书已添加到预先存在的密钥库的消息,则可以选择“
no”,这不会有任何问题。我选择了“yes”,因此我们可以验证后来是
否添加了证书。