Cisco Cisco Email Security Appliance C170 Guia Do Utilizador

Click Next to view the certificate and signature information. 

 shows an example of a 

self-signed certificate.

Enter a name for the certificate. AsyncOS assigns the common name by default.

If you want to submit a CSR for the self-signed certificate to a certificate authority, click Download 
Certificate Signing Request to save the CSR in PEM format to a local or network machine. Click 
Submit to save the certificate and commit your changes.

When the certificate authority returns the trusted public certificate signed by a private key, upload it by 
clicking on the certificate’s name on the Certificates page and entering the path to the file on your local 
machine or network. Make sure that the trusted public certificate that you receive is in PEM format or a 
format that you can convert to PEM using before uploading to the appliance. (Tools for doing this are 
included with OpenSSL, free software from http://www.openssl.org.)

Uploading the certificate from the certificate authority overwrites the existing certificate. You can also 
upload an intermediate certificate related to the self-signed certificate. You can use the certificate with 
a public or private listener, an IP interface’s HTTPS services, the LDAP interface, or all outgoing TLS 
connections to destination domains.

AsyncOS also allows you to import certificates saved in the PKCS #12 format to use on your appliance. 
You can import the certificate either via the Network > Certificates page in the GUI or the 

certconfig

 

command in the CLI. 

To import a certificate via the GUI:

Click Add Certificate the Network > Certificates page.

Select the Import Certificate option.