Generating an enrollment request, As explained in generating an – Allied Telesis AT-S62 User Manual

AT-S62 User’s Guide

Section VII: Management Security

537

Generating an Enrollment Request

To request a certificate from a public or private CA, you need to generate
an enrollment request. The request contains the public key for the
certificate, a distinguished name, and other information. The request is
stored as a file with a “.csr” extension in the AT-S62 file system, from
where you can upload it onto your management workstation or FTP
server for submission to the CA. (For a review of all the steps to creating
an enrollment request and downloading a certificate from a CA onto a
switch, refer to General Steps for a Public or Private CA Certificate on
page 488.)

Please review the following before you perform the procedure:

❑ You must generate an encryption key pair before you can create

an enrollment request. For instructions, refer to Creating an
Encryption Key on page 500.

❑ During this procedure you are prompted to enter the ID number

of the encryption key pair you want to use to create the
enrollment request. If you have forgotten the ID number, refer to
Creating an Encryption Key on page 500 to view key ID numbers.

To generate an enrollment request, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

2. From the Security and Services menu, type 4 to select the

Keys/Certificates Configuration menu.

3. From the Keys/Certificates Configuration menu, type 1 to select

Switch Distinguished Name (DN) and, when prompted, enter a name.
An enrollment request must have a distinguished name. For
information, refer to Distinguished Names on page 512.

4. From the Keys/Certificates Configuration menu, type 3 to select

Public Key Infrastructure (PKI) Configuration.

The Public Key Infrastructure (PKI) Configuration menu is shown
in Figure 169 on page 525.