101
Destroying the RSA key pair
1. From the navigation tree, select Certificate Management > Certificate.
2. Click Destroy Key.
3. Click Apply to destroy the existing RSA key pair and the corresponding local certificate.
Figure 478 Destroying the RSA key pair
Retrieving and displaying a certificate
You can retrieve an existing CA certificate or local certificate from the CA server and save it locally. To
do so, you can use offline mode or online mode. In offline mode, you must retrieve a certificate by an
out-of-band means like FTP, disk, email and then import it into the local PKI system. By default, the
retrieved certificate is saved in a file under the root directory of the device, and the filename is
domain-name_ca.cer for the CA certificate, or domain-name_local.cer for the local certificate.
To retrieve a certificate:
1. From the navigation tree, select Certificate Management > Certificate.
2. Click Retrieve Cert.
Figure 479 Retrieving a certificate
3. Configure the parameters as described in Table 191.
4. Click Apply.
Table 191 Configuration items
Item Description
Domain Name
Select the PKI domain for the certificate.
Certificate Type
Select the type of the certificate to be retrieved, which can be CA or local.
Enable Offline
Mode
Select this box to retrieve a certificate in offline mode (that is, by an out-of-band means
like FTP, disk, or email).
Get File From
Device
Specify the path and name of the certificate file to import if you enable offline mode:
To Next Page
Loading...
Need help?
General
