HP (Hewlett-Packard) 2600 Switch User Manual


 
Configuring Secure Socket Layer (SSL)
Configuring the Switch for SSL Operation
Comments on Certificate Fields.
There are a number arguments used in the generation of a server certificate.
table 7-1, “Certificate Field Descriptions” describes these arguments.
Table 7-1. Certificate Field Descriptions
Field Name Description
Valid Start Date This should be the date you desire to begin using the SSL
functionality.
Valid End Date This can be any future date, however good security practices would
suggest a valid duration of about one year between updates of
passwords and keys.
Common name This should be the IP address or domain name associated with the
switch. Your web browser may warn you if this field does not match
the URL entered into the web browser when accessing the switch
Organization This is the name of the entity (e.g. company) where the switch is in
service.
Organizational This is the name of the sub-entity (e.g. department) where the
switch is in service.Unit
City or location This is the name of the city where switch is in service
State name This is the name of the state or province where switch is in service
Country code This is the ISO two-letter country-code where switch is in service
For example, to generate a key and a new host certificate:
Generate New Key
Enter certificate Arguments
Generate New Certificate
Figure 7-3. Example of Generating a Self-Signed Server Host certificate on the CLI for the Switch.
7-11