Version 6.6 329 October 2014
Installation & Operation Manual 33. Configuring Security Settings
33.10.3 Generating a Certificate Signing Request (CSR)
Certificate Signing Request (CSR) is a message sent from an applicant to a Certificate
Authority (CA) to apply for a digital identity certificate. The CSR contains information
identifying the applicant and the Public Key. The Private Key is not included in the
CSR; however, is used to digitally sign the entire request. The CSR may be
accompanied by other credentials or proof of identity required by the Certificate
Authority, and the Certificate Authority may contact the applicant for further
information.
If the request is successful, the Certificate Authority will send back an identity
certificate that has been digitally signed with the Private Key of the Certificate
Authority. This certificate file, together with the certificate of the CA itself, must be
added to the Media Gateway Auxiliary Files repository and configured in the Security
Settings screen for the Media Gateway. You must also configure the Trusted Root
Certificate file on the Media Gateway, depending on the identity of the CA who signed
the certificate of the other participant (e.g. of the CA who issued the certificate for the
Softswitch that communicates with the Media Gateway via SIP/TLS protocol).
Note: Never send the Private Key file to anybody. It contains the most sensitive
security data and should never be disclosed. Use CSR instead as described below.
To generate a Certificate Signing Request (CSR):
1. Click
to access the Media Gateway status screen.
2. In the Navigation pane, select Security and then in the configuration pane, click
Security Settings; the Security Settings screen is displayed.
To Next Page
Loading...
