Configuring digital certificates, Information about digital certificates, C h a p t e r – Cisco ASA 5505 User Manual

Page 819

background image

C H A P T E R

41-1

Cisco ASA 5500 Series Configuration Guide using the CLI

41

Configuring Digital Certificates

This chapter describes how to configure digital certificates and includes the following sections:

•

Information About Digital Certificates, page 41-1

•

Licensing Requirements for Digital Certificates, page 41-7

•

Prerequisites for Local Certificates, page 41-7

•

Guidelines and Limitations, page 41-8

•

Configuring Digital Certificates, page 41-9

•

Monitoring Digital Certificates, page 41-41

•

Feature History for Certificate Management, page 41-43

Information About Digital Certificates

CAs are responsible for managing certificate requests and issuing digital certificates. A digital certificate
includes information that identifies a user or device, such as a name, serial number, company,
department, or IP address. A digital certificate also includes a copy of the public key for the user or
device. A CA can be a trusted third party, such as VeriSign, or a private (in-house) CA that you establish
within your organization.

Tip

For an example of a scenario that includes certificate configuration and load balancing, see the following
URL:

https://supportforums.cisco.com/docs/DOC-5964.

This section includes the following topics:

•

Public Key Cryptography, page 41-2

•

Certificate Scalability, page 41-2

•

Key Pairs, page 41-2

•

Trustpoints, page 41-3

•

Revocation Checking, page 41-4

•

The Local CA, page 41-6

This manual is related to the following products:

ASA 5585-X ASA 5555-X ASA 5545-X ASA 5525-X ASA 5515-X ASA 5512-X ASA 5580 ASA 5550 ASA 5540 ASA 5520 ASA 5510 ASA 5500 Series