Creating a Trust Point CA Association
To create a trust point CA association using Fabric Manager, follow these steps:
- Expand Switches > Security then select PKI in the Physical Attributes pane.
- Click the Trust Point tab in the Information Pane.
- Click Create Row.
- Select the switch for which you are creating the trust point CA from the Switch drop-down menu.
- Assign a name to the trust point CA.
- Select a key-pair name to be associated with this trust point for enrollment. Only one RSA key-pair can be specified per CA.
- From the RevokeCheckMethod drop-down menu, select the certificate revocation method that you would like to use . You can use CRL, OCSP, CRL OCSP, or OCSP CRL to check for certificate revocation. The CRL OCSP option checks for revoked certificates first in the locally stored CRL. If not found, the switch uses OCSP to check the revoked certificates on the URL specified in Step 7.
- Enter the OCSP URL if you selected an OCSP certificate revocation method.
Note The OSCP URL must be configured before configuring the revocation checking method.
- Click Create to successfully create the trust point CA or click Close to close the Create Trust Point dialog without creating the trust point CA.
Copyright © 2002-2007, Cisco Systems, Inc. All rights reserved.