Creating a self-signed certificate – Allied Telesis AT-S62 User Manual

Chapter 33: Public Key Infrastructure Certificates

Section VII: Management Security

668

Creating a Self-signed Certificate

This section contains the procedure for creating a self-signed certificate.
Please review the following before you perform the procedure:

❑ For a general review of all the steps to configuring the switch for

a self-signed certificate, refer to General Steps for a Self-signed
Certificate on page 632.)

❑ The switch’s time and date must be set before you create a self-

signed certificate. You can set this manually or you can configure
the switch to obtain the date and time from an SNTP server on
your network or the Internet. For instructions, refer to Setting the
System Time on page 65.

❑ You must generate an encryption key pair before you create a

certificate. For instructions, refer to Creating an Encryption Key on
page 644.

❑ During this procedure you are prompted to enter the ID number

of the encryption key pair you want to use to create the certificate.
If you have forgotten the ID number, refer to Creating an
Encryption Key on page 644 to view key ID numbers.

To create a self-signed certificate, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

The Security and Services menu is shown in Figure 97 on page
294.

2. From the Security and Services menu, type 7 to select

Keys/Certificates Configuration.

The Keys/Certificates Configuration menu is shown in Figure 227
on page 644.

Note

The certificate must have a distinguished name. You can specify the
distinguished name for the certificate from this menu by selecting
option 1 - Distinguished Name in the Keys/Certificates
Configuration menu and entering the name. Or, you can wait and
specify the distinguished name later in this procedure. For
information about distinguished names, refer to Distinguished
Names on page 656.