Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

680

Brocade Mobility Access Point System Reference Guide

53-1003100-01

12

A certificate authority (CA) is a network authority that issues and manages security credentials
and public keys for message encryption. The CA signs all digital certificates it issues with its
own private key. The corresponding public key is contained within the certificate and is called a
CA certificate.

If a certificate displays within the Certificate Management screen with a CRL, that CRL can be
imported. A certificate revocation list (CRL) is a list of revoked certificates, or certificates no
longer valid. A certificate can be revoked if the CA improperly issued a certificate, or if a private
key is compromised. The most common reason for revocation is the user no longer being in
sole possession of the private key.

Signed certificates (or root certificates) avoid the use of public or private CAs. A self-signed
certificate is an identity certificate signed by its own creator, thus the certificate creator also
signs off on its legitimacy. The lack of mistakes or corruption in the issuance of self signed
certificates is central.

Define the following configuration to import the Trustpoint from a location on the network. To do so,
select From Network and provide the following information.

Select OK to import the defined trustpoint. Select Cancel to revert the screen to its last saved
configuration.

5. To optionally export a trustpoint to a remote location, select the Export button from the

Trustpoints screen.

URL

Provide the complete URL to the location of the trustpoint. This option is
available by default. Click the Advanced link next to this field to display more
fields to provide detailed trustpoint location information.

Protocol

If using Advanced settings, select the protocol used for importing the target
trustpoint. Available options include:

•

tftp

•

ftp

•

sftp

•

http

•

cf

•

usb1

•

usb2

•

usb3

•

usb4

Port

If using Advanced settings, use the spinner control to set the port. This option is
not valid for cf and usb1-4..

IP Address

If using Advanced settings, enter IP address of the server used to import the
trustpoint. This option is not valid for cf and usb1-4.

Hostname

If using Advanced settings, provide the hostname of the server used to import
the trustpoint. This option is not valid for cf and usb1-4.

Username/Password

These fields are enabled if using ftp or sftp protocols. Specify the username
and the password for that username to access the remote servers using these
protocols.

Path/File

If using Advanced settings, specify the path to the trustpoint. Enter the
complete path to the file on the server.