User guide
Chapter 8: Security Management
153
f. Country (ISO code) - The country where the organization is
located. This is the two-letter ISO code, e.g. DE for Germany, or
US for the U.S.
g. Challenge Password - Some certification authorities require a
challenge password to authorize later changes on the certificate
(e.g. revocation of the certificate). Enter one if required.
h. Confirm Challenge Password - Confirmation of the Challenge
Password.
i. Email - The email address of a contact person that is responsible
for the KX II-101-V2 and its security.
j. Key length - The length of the generated key in bits. 1024 is the
default.
3. Do one of the following:
a. Select the Create a Self-Signed Certificate checkbox if you need
to generate a self-signed certificate. When you select this option,
the KX II-101-V2 generates the certificate based on your entries,
and acts as the signing certificate authority. The CSR does not
need to be exported and used to generate a signed certificate.
b. Specify the number of days for the validity range. Ensure the KX
II-101-V2 date and time are correct, otherwise an invalid date
may be used to create the certificate's valid from and to range.
c. Click Create.
d. A confirmation dialog is displayed. Click OK to close it.
e. Reboot the KX II-101-V2 to activate the self-signed certificate.
Or
f. Specify the number of days for the validity range. Ensure the KX
II-101-V2 date and time are correct, otherwise an invalid date
may be used to create the certificate's valid from and to range.
g. Click Create.
h. A dialog containing all of the information you entered, as well as
the certificate's valid to and from dates, appears. If the
information is correct, click OK to generate the CSR.