Cisco Systems OL-16647-01 Edit CA Certificate Configuration, Show CA Certificate Details, 33-3

Page 3

Chapter 33 Configuring Certificates

CA Certificate Authentication

More Options... —For additional options for new certificates, click the More Options... button to display configuration options for new and existing certificates. See Configuration Options for CA Certificates.

Modes

The following table shows the modes in which this feature is available:

Firewall Mode

Security Context

 

 

 

 

 

 

 

 

 

Multiple

 

 

 

 

 

 

Routed

Transparent

Single

Context

System

 

 

 

 

 

 

 

 

 

 

Edit CA Certificate Configuration

To modify the characteristics of an existing certificate, select the certificate and click the Edit button to display a number of tab-selectable displays that address CA certificate configuration specifics. For details, see Configuration Options for CA Certificates.

Show CA Certificate Details

The Show Details button displays the Certificate Details dialog box, which shows the following information about the selected certificate:

General—Displays the values for type, serial number, status, usage, public key type, CRL distribution point, the times within which the certificate is valid, and associated certificates. This applies to both available and pending status.

Issued to— Displays the X.500 fields of the subject DN or certificate owner and their values. This applies only to available status.

Issued by—Displays the X.500 fields of the entity granting the certificate. This applies only to available status.

Request CRL

The Request CRL button updates the current version of the Certificate Revocation List (CRL). CRL update provides the current status of certificate users. If the request fails, an error message displays.

The CRL is generated and regenerated automatically until it expires; the Request CRL button forces an immediate CRL file update and regeneration.

Delete a CA Certificate

The Delete button immediately removes the selected CA Certificate configuration from the security appliance. Once you delete a certificate configuration, it cannot be restored; to recreate the deleted certificate, you must use the Add button to reenter the certificate configuration information from the beginning

Note Once you delete a certificate configuration, it cannot be restored.

 

 

Cisco Security Appliance Command Line Configuration Guide

 

 

 

 

 

 

OL-16647-01

 

 

33-3

 

 

 

 

 

Page 2 Page 4
Image 3
Page 2 Page 4
Contents 33-1 CA Certificate AuthenticationA P T E R CA Certificates Fields33-2 Firewall Mode Security Context Multiple RoutedModes Single Context SystemDelete a CA Certificate Edit CA Certificate ConfigurationShow CA Certificate Details Request CRL33-4 Configuration Options for CA CertificatesRevocation Check Configuration CRL Retrieval Policy Configuration33-5 Advanced Configuration Options33-6 Identity Certificates AuthenticationAdd/Install an Identity Certificate Add Identity Certificate Fields33-7 Show Identity Certificate Details Certificate Subject DN Attributes33-8 33-9 Delete an Identity CertificateExport an Identity Certificate Export Identity Certificate Fields33-10 Installing Identity CertificatesGenerate Certificate Signing Request Generate Certificate Signing Request Fields33-11 To install an Identity CertificateCode-Signer Certificates To Add the Identity CertificateImport or Export a Code-Signer Certificate Local Certificate AuthorityShow Code-Signer Certificate Details Delete a Code-Signer Certificate33-13 Default Local CA ServerConfigurable Parameters Defaults33-14 Configuring the Local CA Sever33-15 More Local CA Configuration Options33-16 33-17 Deleting the Local CA ServerUnrevoking a Local CA Certificate Manage User CertificatesManage User Database Revoking a Local CA CertificateEmail OTP Edit a Local CA UserDelete a Local CA User Allow Enrollment33-20
Top Page Image Contents