Creating a self-signed certificate – Allied Telesis AT-S62 User Manual

Chapter 27: Public Key Infrastructure Certificates

Section VII: Management Security

524

Creating a Self-signed Certificate

This section contains the procedure for creating a self-signed certificate.
Please review the following before you perform the procedure:

❑ For a general review of all the steps to configuring the switch for

a self-signed certificate, refer to General Steps for a Self-signed
Certificate on page 488.)

❑ The switch’s time and date must be set before you create a self-

signed certificate. You can set this manually or you can configure
the switch to obtain the date and time from an SNTP server on
your network or the Internet. For instructions, refer to Setting the
System Time on page 67.

❑ You must generate an encryption key pair before you create a

certificate. For instructions, refer to Creating an Encryption Key on
page 500.

❑ During this procedure you are prompted to enter the ID number

of the encryption key pair you want to use to create the certificate.
If you have forgotten the ID number, refer to Creating an
Encryption Key on page 500 to view key ID numbers.

To create a self-signed certificate, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

The Security and Services menu is shown in Figure 55 on page
196.

2. From the Security and Services menu, type 4 to select

Keys/Certificates Configuration.

The Keys/Certificates Configuration menu is shown in Figure 164
on page 500.

Note

The certificate must have a distinguished name. You can specify the
distinguished name for the certificate from this menu by selecting
option 1 - Distinguished Name in the Keys/Certificates
Configuration menu and entering the name. Or, you can wait and
specify the distinguished name later in this procedure. For
information about distinguished names, refer to Distinguished
Names on page 512.