Support User Manuals

Nortel Networks 450 series Switch User Manual

Open as PDF

of 526

310 Managing certificates

Adding a certiﬁcate to the Nortel SNAS

The following steps describe how to install a certificate (and key, if

applicable) using the copy-and-paste method.

The certificate (and key, if applicable) must be in PEM format.

ATTENTION

Nortel recommends performing copy-and-paste operations using a Telnet or

SSH client to connect to the MIP. If you use a console connection to connect to

one of the Nortel SNAS devices in the cluster, you may find that HyperTerminal

under Microsoft Windows is slow to complete copy-and-paste operations.

Step Action

1 Access the Certificate menu by using the /cfg/cert <cert

id> command, where <cert id> is the certificate number.

If you obtained the certificate by using the /cfg/cert

#/request command to generate the CSR, specify the same

certificate number as the certificate number you used to generate

the CSR. In this way, the private key remains connected to the

certificate number, and you do not need to perform an additional

step to add the private key.

If you obtained the certificate by means other than using the

/cfg/cert #/request command to generate the CSR, specify

a certificate number not used by any other configured certificate.

If the private key and the certificate are not contained in the

same file, you will have to perform an additional step to add the

private key (see “Adding a certificate to the Nortel SNAS ” (page

310)).

To view basic information about configured certificates, use the

/info/certs command.

To verify that the current certificate number is not in use by an

installed certificate, use the /cfg/cert #/show command.

2 Copy the certificate.

a In a text editor, open the certificate file you received from the

CA.

b Copy the entire contents, including the -----BEGIN

CERTIFICATE----- and -----END CERTIFICATE-----

lines.

If the certificate file contains the private key as well,

also include the entire contents of the key, including the

-----BEGIN RSA PRIVATE KEY----- and -----END RSA

PRIVATE KEY----- lines.

3 Add the certificate.

Nortel Secure Network Access Switch

Using the Command Line Interface

NN47230-100 03.01 Standard

28 July 2008

Copyright © 2007, 2008 Nortel Networks

.

previous next