PDF(1.3 MB) View with Adobe Reader on a variety of devices
ePub(1.4 MB) View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
Mobi (Kindle)(694.9 KB) View on Kindle device or Kindle app on multiple devices
Updated:August 17, 2017
The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
Edit Secure Sockets Layer (SSL) Server Authentication Settings on Sx500 Series Stackable Switches
The Secure Sockets Layer (SSL) is a protocol used mainly for security management on the Internet. It uses a program layer which is located between the HTTP and the TCP layers. For authentication, SSL uses certificates which are digitally signed and bounded to the public key to identify the private key owner. This authentication helps during the time of connection. Through the use of SSL, the certificates are exchanged in blocks during the authentication process which are in the format described in ITU-T standard X.509. Then by the certification authority which is an external authority, X.509 certificates are issued which are digitally signed.
This article explains how to edit SSL server authentication settings and how to generate a certificate request on the Sx500 Series Stackable Switches.
• Sx500 Series Stackable Switches
SSL Server Authentication Settings
Step 1. Log in to the Switch Configuration Utility and choose Security > SSL Server > SSL Server Authentication Settings. The SSL Server Authentication Settings page opens:
Step 2. Check the check box of the active certificate you wish to edit in the SSL Server Key Table.
Step 3. Click Edit to make the changes to the existing certificate. The Edit Certificate window appears:
Note: In this example, certificate 1 is checked.
Step 4. In the Certificate ID field, choose either 1 or 2 as the ID of the certificate. There are only 2 options available in the Certificate ID field in this configuration.
Step 5. Check the check box in the Regenerate RSA Key field to regenerate the RSA key.
Step 6. In the Key Length field, click either one of the radio buttons.
• Use Default — The default key length is used.
• User Defined — In this field, the key length can have the value from 512 to 2048. The default value is 1024. In this example, 2000 is entered.
Step 7. In the Common Name field, enter the fully-qualified device URL or particular public IP address. If left blank, it defaults to the lowest IP address of the device (when the certificate is generated). In this example, the default address of the SG500X switch is used as common name.
Step 8. In the Organization Unit field, enter the name of the organization-unit or department.
Step 9. In the Organization Name field, enter the name of the organization.
Step 10. In the Location field, enter the name of the location or city.
Step 11. In the State field, enter the name of the state or province.
Step 12. In the Country field, enter the name of the country. As this accepts only alphanumeric value, use the global 2 letter format. For example, for the United States enter US.
Step 13. In the Duration field, enter the number of days a certification is valid.