Chapter 18 Managing System Administration Configurations

Adding Local Server Certificates

Table 18-11

Local Certificates Page

 

 

 

 

 

 

Option

 

 

Description

 

 

 

 

 

Friendly Name

 

Name that is associated with the certificate.

 

 

 

 

 

Issued To

 

 

Entity to which the certificate is issued. The name that appears is from the certificate subject.

 

 

 

 

 

Issued By

 

 

Trusted party that issued the certificate.

 

 

 

 

 

Valid From

 

 

Date the certificate is valid from.

 

 

 

 

Valid To (Expiration)

 

Date the certificate is valid to.

 

 

 

 

 

Protocol

 

 

Protocol associated with the certificate.

 

 

 

 

 

 

Step 2

Click Add.

 

 

Step 3

Enter the information in the Local Certificate Store Properties page as described in Table 18-12:

Table 18-12

Local Certificate Store Properties Page

 

 

 

 

 

Option

 

 

 

Description

 

 

Import Server Certificate

Select to browse the client machine for the Local Certificate file and import

 

 

 

 

the private key and private key password. See Importing Server Certificates

 

 

 

 

and Associating Certificates to Protocols, page 18-15.

 

 

 

 

Supported certificate formats include, DER, PEM, or Microsoft private key

 

 

 

 

proprietary format.

 

 

Generate Self Signed Certificate

Select to generate a self-signed certificate. See Generating Self-Signed

 

 

 

 

Certificates, page 18-16.

 

 

Generate Certificate Signing Request

Select to generate a certificate signing request. See Generating a Certificate

 

 

 

 

Signing Request, page 18-17.

 

 

Bind CA Signed Certificate

Select to bind the CA certificate. After the RA signs the request, you can

 

 

 

 

install the returned signed certificate on ACS and bind the certificate with

 

 

 

 

its corresponding private key. See Binding CA Signed Certificates,

 

 

 

 

page 18-17.

 

 

 

 

 

 

 

 

 

 

Importing Server Certificates and Associating Certificates to Protocols

The supported certificate formats are either DER or PEM.

Step 1 Select System Administration > Configuration > Local Server Certificates > Local Certificates > Add.

Step 2 Select Import Server Certificate > Next.

Step 3 Enter the information in the ACS Import Server Certificate as described in Table 18-13:

 

 

User Guide for Cisco Secure Access Control System 5.3

 

 

 

 

 

 

OL-24201-01

 

 

18-15

 

 

 

 

 

Page 529
Image 529
Cisco Systems OL-24201-01 manual Associating Certificates to Protocols, Signing Request, 18-15