Manualshelf

Installation guide

ManualsBrandsCisco ManualsComputer equipmentExplorer 4700
341342343344345346347348349350
9-16
Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance
OL-26645-02
Chapter 9 Configuring SSL
Using SSL Keys
After generating an RSA key pair, you can:
Create a CSR parameter set. The CSR parameter set defines the distinguished name attributes for
the ACE appliance to use during the CSR-generating process. For details on defining a CSR
parameter set, see the Configuring SSL CSR Parameters, page 9-26.
Generate a CSR for the RSA key pair file and transfer the CSR request to the certificate authority
for signing. This provides an added layer of security because the RSA private key originates directly
within the ACE appliance and does not have to be transported externally. Each generated key pair
must be accompanied by a corresponding certificate to work. For details on generating a CSR, see
Generating CSRs, page 9-27.
Related Topics
Configuring SSL, page 9-1
Importing SSL Certificates, page 9-8
Importing SSL Key Pairs, page 9-12
Configuring SSL Chain Group Parameters, page 9-25
Configuring SSL CSR Parameters, page 9-26
Configuring SSL Proxy Service, page 9-28
Exporting SSL Certificates
The ability to export SSL certificates allows you copy signed certificates to another server on your
network so that you can then import them onto another ACE appliance or Web server. Exporting
certificates is similar to copying in that the original certificates are not deleted.
Use this procedure to export SSL certificates from an ACE appliance to a remote server.
Assumption
The SSL certificate can be exported. (See Importing SSL Certificates, page 9-8.)
This functionality on the DM requires that SSH is enabled on the appliance. Also, ensure that the
ssh key rsa 1024 force command is applied on the appliance.
Procedure
Step 1 Choose Config > Virtual Contexts > context > SSL > Certificates. The Certificates table appears,
listing any valid SSL certificates.
Step 2 Select the certificate you want to export, and then click Export. The Export dialog box appears.
Step 3 Enter the information in Table 9-6.