Creating a self-signed certificate – Allied Telesis AT-S62 User Manual
Page 718
Chapter 32: PKI Certificates and SSL
718
Section VII: Management Security
Creating a Self-signed Certificate
This section contains the procedure for creating a self-signed certificate.
Please review the following before you perform the procedure:
For a general review of all the steps to configuring the switch for a self-
signed certificate, refer to “General Steps for a Self-signed Certificate”
on page 685.)
The switch’s time and date must be set before creating a self-signed
certificate. You can set this manually or you can configure the switch to
obtain the date and time from an SNTP server on your network or the
Internet. For instructions, refer to “Setting the System Time” on
page 61.
You must generate an encryption key pair before you create a
certificate. For instructions, refer to “Creating an Encryption Key” on
page 695.
During this procedure you are prompted to enter the ID number of the
encryption key pair to be used to create the certificate. If you do not
know the ID number, refer to “Creating an Encryption Key” on
page 695 to view key ID numbers.
To create a self-signed certificate, perform the following procedure:
1. From the Main Menu, type 7 to select Security and Services.
The Security and Services menu is shown in Figure 103 on page 313.
2. From the Security and Services menu, type 7 to select Keys/
Certificates Configuration.
The Keys/Certificates Configuration menu is shown in Figure 238 on
page 695.
Note
The certificate must have a distinguished name. You can specify the
distinguished name for the certificate from this menu by selecting
option 1 - Distinguished Name in the Keys/Certificates Configuration
menu and entering the name. Or, you can wait and specify the
distinguished name later in this procedure. For information about
distinguished names, refer to “Distinguished Names” on page 707.
3. From the Keys/Certificate menu, select 3 to select Public Key
Infrastructure (PKI) Configuration.