beautypg.com

Allied Telesis AT-S60 User Manual

Page 512

background image

Chapter 24: Public Key Infrastructure (PKI)

Section V: Security Features

512

10. Type 3 - Format to select the type of encoding format the certificate

is to use.

You can toggle between the following values:

DER - Indicates the certificate contents are in a binary format. This
is the default.

PEM - Indicates the certificate are in the Privacy Enhanced Mail
(PEM) format which is an ASCII format.

11. Type 4 - Serial Number to assign a certificate a serial number.

The following message is displayed:

Enter certificate serial number -> [0 to 2147483647]
-> 0

12. Enter a value between 0 and 2,147,483,647 and press Return.

Usually, self-signed certificates are assigned a serial number of 0.

13. Type 5 - Subject DN to assign a certificate a Distinguished Name (DN).

The default of the Subject DN field is the value you configured in
the Switch Distinguished Name field on the Keys/Certificate
Configuration Menu.(See Configuring a Distinguished Name and
Keys on page 491.)

If you configured the Switch Distinguished Name, you do not
have to configure the Subject DN. In other words, you can use the
default value. However, if you want to change the DN for the
certificate, enter a value for the Subject DN. If you did not
configure a Switch Distinguished Name, you must configure the
Subject DN.

Note

The value you configure for the Subject DN does not become the DN
for the switch.

A distinguished name specifies the physical address of the subject
of a certificate, much like a street address. It consists of a list of
values that uniquely identifies the subject of a certificate.The
Certification Authority may require that a particular distinguished
name is used. Otherwise, use a logical distinguished name. The list
of values that specify a distinguished name are:

❑ common name (cn), organization name(ou), organization (o),

locality (l), and state-or-province-name (st) are all strings
consisting of printable characters with the exception of quotation
marks. To use the following special characters {,=,+<>#;\}
type a\ before the character.

❑ country-name (c) is a string consisting of any printable characters.

See also other documents in the category Allied Telesis Computer hardware: