Specifications
Cisco Systems, Inc.
All contents are Copyright © 1992–2002 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 30 of 42
In the Validation Lab, a Web browser on the Windows XP client and a wired connection to the network were used
to obtain a client certificate from the private root certification authority server. The following procedure was used to
obtain the client certificate from a Microsoft certification authority server:
1. Using a Web browser on the client, point the browser to the certification authority server as follows: http://
IP-address-of-Root-CA/certsrv.
2. Log in using “Domain_Name\user_name”; you must log in using the username of the individual who will be
using the XP client. (The username gets embedded into the client certificate.)
3. On the “Welcome” screen, choose “Request a certificate” and click Next.
4. Choose “Advanced request” and click Next.
5. Choose “Submit a certificate request to this CA using a form” and click Next.
6. On the advanced certificate request form, choose the following (as shown in Figure 6-15):
a. Certificate Template as “Authenticated Session.”
b. Specify Key Size to be 1024. Click Submit.
7. On the “Certificate Issued” screen, click “Install this certificate”; this should result in successful installation of a
client certificate on the Windows XP client.
Figure 6-15
Step 6: Advanced Certificate Request for Obtaining a Client Certificate
Client certificate verification:
The client certificate should conform to the requirements specified in Section 5.2.1. The following procedure was
used to verify the client certificate on the Windows XP machine: