Support User Manuals

Nortel Networks 325 series Switch User Manual

Open as PDF

of 526

Managing private keys and certificates 309

b Save the file with a .csr extension. Nortel recommends

using a file name that indicates the server on which the

certificate is to be used.

6 Save the private key to a file.

If you intend to use the same certificate number when you add

the returned certificate to the Nortel SNAS, perform this step only

if you want to create a backup copy of the private key.

If you do not intend to use the same certificate number when

you add the returned certificate to the Nortel SNAS, you must

perform this step in order to create the key file. When you add

the returned certificate to the Nortel SNAS using a different

certificate number, you will have to associate the private key with

the new certificate by pasting or importing the contents of the key

file (see “Installing certificates and keys” (page 299)).

a Display the certificate and key (see “Displaying or saving a

certificate and key” (page 316)).

b Copy the private key, including the -----BEGIN RSA

PRIVATE KEY----- and -----END RSA PRIVATE

KEY----- lines, and paste it into a text editor.

c Save the text editor file with a .pem extension. Nortel

recommends using the same file name that you defined for

the .csr file (see step 5), so the connection between the two

files is obvious.

7 Submit the CSR to a CA such as Entrust or VeriSign.

a In a text editor, open the .csr file you created in step 5.

b Copy the entire CSR, including the -----BEGIN

CERTIFICATE REQUEST----- and -----END CERTIFICATE

REQUEST-----, lines.

c Use your web browser to access the CA web site and follow

the online instructions. The process for submitting the CSR

varies with each CA. When prompted, paste the CSR as

required in the CA online request process. If the CA requires

you to identify a server software vendor whose software you

used to generate the CSR, specify Apache.

8 The CA processes the CSR and returns a signed certificate.

Create a backup copy of the certificate (see “Displaying or

saving a certificate and key” (page 316)).

The certificate is ready to be added into the Nortel SNAS cluster

(see “Adding a certificate to the Nortel SNAS ” (page 310)).

--End--

Nortel Secure Network Access Switch

Using the Command Line Interface

NN47230-100 03.01 Standard

28 July 2008

Copyright © 2007, 2008 Nortel Networks

.

previous next