Manualshelf

Installation guide

ManualsBrandsCisco ManualsComputer equipmentExplorer 4700
331332333334335336337338339340
9-8
Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance
OL-26645-02
Chapter 9 Configuring SSL
Importing SSL Certificates
The ACE allows you to export these files but does not allow you to import any files with these names.
When you upgrade the ACE software, these files are overwritten with the files provided in the upgrade
image. You cannot use the crypto delete CLI command to delete these files unless you downgrade the
ACE software because a software downgrade preserves these files as if they were user-installed SSL
files.
Related Topics
Configuring SSL, page 9-1
Exporting SSL Certificates, page 9-16
Importing SSL Certificates, page 9-8
Using SSL Keys, page 9-11
Importing SSL Key Pairs, page 9-12
Configuring SSL CSR Parameters, page 9-26
Generating CSRs, page 9-27
Importing SSL Certificates
Use this procedure to import SSL certificates.
Note The ACE supports a maximum of 4,096 certificates.
Assumptions
You have configured an ACE appliance for server load balancing. (See Load Balancing Overview,
page 5-1.)
You have obtained an SSL certificate from a certificate authority (CA) and have placed it on a
network server accessible by the ACE appliance.
This functionality on the DM requires that SSH is enabled on the appliance. Also, ensure that the
ssh key rsa 1024 force command is applied on the appliance.
Procedure
Step 1 Choose Config > Virtual Contexts > context > SSL > Certificates. The Certificates table appears,
listing any valid SSL certificates.
The cisco-sample-cert certificate is included in the list. For information on this sample certificate, see
the “Using SSL Certificates” section on page 9-6.
Step 2 Click Import. The Import dialog box appears.
To import multiple SSL certificates, click Bulk Import. The Bulk Import dialog box appears.