PurposeCommand or Action
Accesses the certification authority (CA) by HTTP
through the proxy server.
enrollment http-proxy hostname port-number
Example:
Device(ca-trustpoint)# enrollment http-proxy
host2 8080
Step 6
Exits CA trustpoint configuration mode and returns to
privileged EXEC mode.
end
Example:
Device(ca-trustpoint)# end
Step 7
Authenticating the CA
The device must authenticate the certification authority (CA). It does this by obtaining the self-signed certificate
of the CA, which contains the public key of the CA. Because the certificate of the CA is self-signed (the CA
signs its own certificate) the public key of the CA should be manually authenticated by contacting the CA
administrator to compare the fingerprint of the CA certificate when you perform this step.
Perform the following task to get the public key of the CA:
SUMMARY STEPS
1.
enable
2.
configure terminal
3.
crypto pki authenticatename
4.
end
DETAILED STEPS
PurposeCommand or Action
Enables privileged EXEC mode.enable
Example:
Device> enable
Step 1
•
Enter your password if prompted.
Enters global configuration mode.configure terminal
Example:
Device# configure terminal
Step 2
Authenticates the CA by getting the certificate of the CA.
crypto pki authenticatename
Example:
Device(config)# crypto pki authenticate myca
Step 3
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
1151
How to Configure Certification Authority
To Next Page
Loading...
Need help?
General
