Create a Certificate Signing Request
If you deploy a PKI in your environment, create a CSR to make sure your G200 system or device is
trusted by its network peers.
Note: Only a single outstanding CSR of either type can exist at a time. After a CSR is generated, get it
signed and installed on your system before creating another. For example, if you generate a client
CSR and then, prior to having it signed and installed on the system, another client CSR is
generated, the system discards and invalidates the previous CSR, and any attempt to install a
signed version of it results in an error.
Procedure
1. In the system web interface, go to Admin Settings > Certificate.
2. Select Create.
3. Complete the following fields:
Setting Description
Country Specifies the country where your organization is located.
State or Province Specifies the state or province where your organization is located. Default is
blank. Maximum characters: 128.
City or Locality Specifies the city where your organization is located. Default is blank.
Maximum characters: 128.
Organization Specifies your organization’s name. Default is blank. Maximum characters: 64.
Organizational Unit Specifies the unit of business defined by your organization. Default is blank.
Maximum characters: 64.
Note: The system supports only one OU field. If you want the signed
certificate to include more than one OU field, you must download and
edit the CSR manually.
Common Name Specifies the name that the system assigns to the CSR.
Use the following guidelines when configuring the Common Name:
• For systems registered in DNS, use the FQDN of the system.
• For systems not registered in DNS, use the IP address of the system.
Default is blank. Maximum characters: 64; truncated if necessary.
4. Select Download to get the .csr file.
Managing Certificates
32
To Next Page
Loading...
Need help?
General
