Cisco has translated this document using a combination of machine and human technologies to offer our users around the world Support content in their own language.Please note that even the best machine translation will not be as accurate as that provided by a professional translator.Cisco Systems, Inc. assumes no liability for the accuracy of these translations and recommends that the original English document (link provided) is always consulted.
admin@firepower:~$ sudo su - Password: root@firepower:~# root@firepower:~# openssl genrsa -des3 -out fire.key 4096 Generating RSA private key, 4096 bit long modulus ......... .............. e is 65537 (0x10001) Enter pass phrase for fire.key: Verifying - Enter pass phrase for fire.key: root@firepower:~# root@firepower:~# openssl req -new -key fire.key -out fire.csr You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Code :PL State or Province Name : Locality Name : Organization Name :Cisco Organizational Unit Name :TAC Common Name :firepower.example.com Email Address : root@firepower:~#
使用Microsoft CA (pxGrid模板)，一旦生成fire.csr，签署它。导入回到专用密钥(fire.key)和签名证书(fire.pem)对FMC内部证书存储。对于专用密钥请使用密码在密钥时设置(openssl