Send documentation comments to mdsfeedback-doc@cisco.com
43-8
Cisco MDS 9000 Family Fabric Manager Configuration Guide
OL-17256-03, Cisco MDS NX-OS Release 4.x
Chapter 43 Configuring Certificate Authorities and Digital Certificates
Configuring CAs and Digital Certificates
Step 8 Click Create to create the RSA Key-Pair.
Creating a Trust Point CA Association
To create a trust point CA association using Fabric Manager, follow these steps:
Step 1 Expand Switches > Security then select PKI in the Physical Attributes pane.
Step 2 Click the Trust Point tab in the Information Pane.
You see the information shown in Figure 43-3.
Figure 43-3 Trust Point Tab
Step 3 Click Create Row.
You se e t he Create Trust Point dialog box shown in Figure 43-4.
Figure 43-4 Create Trust Point Dialog Box
Step 4 Select the switch for which you are creating the trust point CA from the Switch drop-down menu.
Step 5 Assign a name to the trust point CA.
Step 6 Select a key-pair name to be associated with this trust point for enrollment. It was generated earlier in
the
“Generating an RSA Key-Pair” section on page 43-6. Only one RSA key-pair can be specified per
CA.
Step 7 From the RevokeCheckMethod drop-down menu, select the certificate revocation method that you would
like to use (see
Figure 43-4). You can use CRL, OCSP, CRL OCSP, or OCSP CRL to check for certificate
revocation. The CRL OCSP option checks for revoked certificates first in the locally stored CRL. If not
found, the switch uses OCSP to check the revoked certificates on the URL specified in Step 7.
Step 8 Enter the OCSP URL if you selected an OCSP certificate revocation method.
To Next Page
Loading...
Need help?
General
