Nortel 4134 Guia Do Utilizador
Authenticating the CA and importing a CA certificate
169
—End—
Table 88
Variable definitions
Variable definitions
Variable
Value
<keypair-name>
Specifies the name of the key pair.
{rsa | dss}
Specifies the key type, either RSA or DSS.
{512 | 1024 | 2048}
Specifies the key size: 512, 1024, or 2048.
Configuring certificate password
Although it is not a common scenario, depending upon the policy of the CA,
the certificates issued by the CA can be encrypted. In cases where the
certificate is encrypted, then a password is needed to decrypt them. This
password is defined here.
the certificates issued by the CA can be encrypted. In cases where the
certificate is encrypted, then a password is needed to decrypt them. This
password is defined here.
Procedure steps
Step
Action
1
To enter the configuration mode, enter:
configure terminal
2
To specify crypto configuration for IPsec and IKE, enter:
crypto
3
To specify the CA trustpoint to configure, enter:
ca trustpoint <ca-name>
4
To configure the password, enter:
password <password>
—End—
Authenticating the CA and importing a CA certificate
Authenticate the certificate authority and import the CA certificate. Importing
CA certificate varies depending on the configured enrollment method
(terminal or SCEP).
CA certificate varies depending on the configured enrollment method
(terminal or SCEP).
If the enrollment method is SCEP, the system imports the digital certificate of
the CA using the SCEP protocol. And if the enrollment method is terminal,
the system prompts you to paste the certificate obtained from the CA.
the CA using the SCEP protocol. And if the enrollment method is terminal,
the system prompts you to paste the certificate obtained from the CA.
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.