Installing ca certificates onto a switch – Allied Telesis AT-S62 User Manual

Chapter 33: Public Key Infrastructure Certificates

Section VII: Management Security

684

Installing CA Certificates onto a Switch

This section lists the procedures to installing a certificate created by a
public or private CA onto the switch. It should be noted that a CA
generated certificate will consist of several certificates, with a minimum
of two. All the certificates from the CA must be installed on the switch.

Note

CA certificates can only be used on the switch where you created
the encryption key pair and enrollment request. The certificates will
not work on any other switch.

To install CA certificates on a switch, perform the following procedure:

1. Download the certificates from your management workstation or FTP

server to the AT-S62 file system on the switch. For instructions, refer
to Downloading a System File on page 188.

2. Load the certificates into the certificate database. For instructions,

refer to Adding a Certificate to the Database on page 672.

3. Activate HTTPS on the switch by configuring the web server and

specifying the key pair used to create the enrollment request as the
active key pair. For instructions, refer to Configuring the Web Server
on page 634.