User's Manual
Using the CMC Web Interface 135
To obtain a secure server certificate for the CMC, you must submit a
Certificate Signing Request (CSR) to a certificate authority of your choice. A
CSR is a digital request for a signed, secure server certificate containing
information about your organization and a unique, identifying key.
When a CSR is generated from the Generate Certificate Signing Request
(CSR) page, you are prompted to save a copy to your management station or
shared network, and the unique information used to generate the CSR is
stored on the CMC. This information is used later to authenticate the server
certificate you receive from the certificate authority. After you receive the
server certificate from the certificate authority, you must then upload it to the
CMC.
NOTE: For the CMC to accept the server certificate returned by the certificate
authority, authentication information contained in the new certificate must match
the information that was stored on the CMC when the CSR was generated.
CAUTION: When a new CSR is generated, it overwrites any previous CSR on the
CMC. If a pending CSR is overwritten before its server certificate is granted from a
certificate authority, the CMC will not accept the server certificate because the
information it uses to authenticate the certificate has been lost. Take caution
when generating a CSR to prevent overwriting any pending CSR.
To generat e a CSR:
1
From the
SSL Main Menu
page, select
Generate a New Certificate
Signing Request (CSR)
, and then click
Next
. The
Generate Certificate
Signing Request (CSR)
page displays.
2
Type a value for each CSR attribute value.
Table 5-18 describes the
Generate Certificate Signing Request (CSR)
page options.
3
Click
Generate
. A
File Download
dialog box appears.
4
Save the
csr.txt
file to your management station or shared network. (You
may also open the file at this time and save it later.) You will later submit
this file to a certificate authority.