beautypg.com

N in, Figure 41-19 – H3C Technologies H3C WX6000 Series Access Controllers User Manual

Page 485

background image

41-16

Figure 41-19 Configure a PKI domain

Type torsa as the PKI domain name.

Type myca as the CA identifier.

Select aaa as the local entity.

Select CA as the authority for certificate request.

Type http://4.4.4.133:446/c95e970f632d27be5e8cbf80e971d9c4a9a93337 as the URL for

certificate request. The URL must be in the format of http://host:port/Issuing Jurisdiction ID, where

Issuing Jurisdiction ID is the hexadecimal string generated on the CA.

Select Manual as the certificate request mode.

Click Display Advanced Config to display the advanced configuration items.

Select the Enable CRL Checking check box.

Type http://4.4.4.133:447/myca.crl as the CRL URL.

Click Apply. A dialog box appears, asking "Fingerprint of the root certificate not specified. No root

certificate validation will occur. Continue?" Click OK.

# Generate an RSA key pair.

Select the Certificate tab, and then click Generate Key, as shown in

Figure 41-20

, and perform

the configuration as shown in

Figure 41-21

.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: