User`s guide
XSR User’s Guide 293
Chapter 11 Interoperability Profile for the XSR
Configuring the Virtual Private Network
For security reasons your password will not be saved in the
configuration.
Please make a note of it.
Password:****
Re-enter password:****
Include the router serial number in the subject name (y/n) ?
y
The serial number in the certificate will be:
3526015000250142
Request certificate from CA (y/n) ? y
You may experience a short delay while RSA keys are
generated.
Once key generation is complete, the certificate request
will be sent to the Certificate Authority.
Use 'show crypto ca certificate' to show the fingerprint.
<186>Aug 29 7:11:1 192.168.1.33 PKI: A certificate was
successfully
received from the CA.
6 Once the certificate is properly enrolled, issue the show crypto ca
certificates
command to display the end-entity and other certificates.
The first certificate shown, identified as being in ENTITY-ACTIVE state,
is the end-entity certificate. Compare the Subject ID to the serial number
earlier displayed by the enrollment script to verify its authenticity.
XSR#show crypto ca certificates
Certificate - issued by Hightest
State: ENTITY-ACTIVE
Version: V3
Serial Number: 75289387826578118934757
Issuer: MAILTO=foo@foo.com, C=US, ST=MA, L=Andover,
O=Ent Sys, OU=Sales, CN=PKI Certificate Authority
Valid From: 2002 Aug 29th, 15:51:58 GMT
Valid To: 2003 Aug 29th, 16:01:58 GMT
Subject: CN=Enterasys Networks X-pedition Series -
3526015000250142
Fingerprint: ABF37B67 7200CCDA 604CB10C D5AC7F49
Certificate Size: 1590 bytes