Chapter 11 Managing certificates 585

To verify that the current certificate number is not in use by an installed certificate, use the /cfg/cert #/show command.

2Copy the certificate.

a In a text editor, open the certificate file you received from the CA.

b Copy the entire contents, including the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- lines.

If the certificate file contains the private key as well, also include the

entire contents of the key, including the -----

BEGIN RSA PRIVATE

KEY-----

and -----

END RSA PRIVATE KEY-----

lines.

3Add the certificate.

a Enter the following command:

/cfg/cert #/cert

b Paste the certificate at the command prompt.

c Press Enter to create a new line, and then enter an ellipsis (...) to terminate.

d If you are pasting in the private key at the same time, and if the key has been password protected, you are prompted to enter the password phrase. The password phrase required is the one specified when the key was created or exported.

4Apply the changes.

If you obtained the certificate by using the /cfg/cert #/request command to generate the CSR and are using the same certificate number, the certificate is now fully installed.

If you obtained the certificate by means other than using the /cfg/cert #/ request command to generate the CSR and are using a new certificate number, you must now add the corresponding private key (see “Adding a private key to the Nortel SNAS 4050 using the CLI” on page 587).

Nortel Secure Network Access Switch 4050 User Guide

Page 585
Image 585
Nortel Networks 4050 manual Entire contents of the key, including, Lines, Add the certificate Enter the following command