Version 7.2 117 Mediant 500L Gateway & E-SBC
User's Manual 10. Configuring SSL/TLS Certificates
113).
3. In the table, select the required TLS Context, and then click the Change Certificate
link located below the table; the Change Certificates page appears.
4. Under the Certificate Signing Request group, do the following:
a. In the 'Subject Name [CN]' field, enter the DNS name.
Note: For the Subject Name, you can use the IP address of the device instead of a
qualified DNS name. However, it is not recommended since the IP address is subject
to change and may not uniquely identify the device.
a. From the 'Signature Algorithm' drop-down list, select the hash function algorithm
(SHA-1, SHA-256, or SHA-512) with which to sign the certificate.
b. Fill in the rest of the request fields according to your security provider's
instructions.
c. Click the Create CSR button; a textual certificate signing request is displayed in
the area below the button:
Figure 10-1: Certificate Signing Request Group
5. Copy the text and send it to your security provider (CA) to sign this request.
6. When the CA sends you a server certificate, save the certificate to a file (e.g., cert.txt).
Make sure that the file is a plain-text file containing the"‘BEGIN CERTIFICATE"
header, as shown in the example of a Base64-Encoded X.509 Certificate below:
-----BEGIN CERTIFICATE-----
MIIDkzCCAnugAwIBAgIEAgAAADANBgkqhkiG9w0BAQQFADA/MQswCQYDVQQGEw
JGUjETMBEGA1UEChMKQ2VydGlwb3N0ZTEbMBkGA1UEAxMSQ2VydGlwb3N0ZSBT
ZXJ2ZXVyMB4XDTk4MDYyNDA4MDAwMFoXDTE4MDYyNDA4MDAwMFowPzELMAkGA1
UEBhMCRlIxEzARBgNVBAoTCkNlcnRpcG9zdGUxGzAZBgNVBAMTEkNlcnRpcG9z
To Next Page
Loading...
