Generate Certificate Request

Step 1

Click Generate Certificate Request.

Step 2

Next, enter the following fields:

• Certificate ID—Select the certificate ID.

• Regenerate RSA Key—Check the checkbox to regenerate a RSA key.
• Key Length—Select the key length from one of the 2 options (2048 bits or 3072 bits).
• Common Name—Enter a name for the certificate.
• Organization Unit—Enter the organization unit.

• Organization Name—Enter the organization name.

• Location—Enter the location or city name.

• State—Enter the state or province.

• Country—Enter the name of the country.

• Certificate Request—The Begin Certificate Request will be displayed.
• *Duration—Displays the number of days that the certificate is valid for. (Range 30-1095, Default 730.

  Note	The Duration field can only be seen when trying to edit an existing certificate.

Step 3

Click Generate Certificate Request. The new certificate is generated and replaces existing one.

Step 4

To import a certificate signed by a CA, select an active certificate and click Import Certificate.

Step 5

Enter the following fields:

• Certificate ID—Select a certificate.

• Certificate Source—Displays that the certificate is auto-generated.

• Certificate—Copy in the received certificate.

• Import RSA Key—Pair-Select to enable copying in the new RSA key-pair.

• Public Key—Copy in the RSA public key.

• Private Key (Encrypted)—Select and copy in the RSA private key in encrypted form.

Step 6

Click Apply to apply the changes to the Running Configuration.

Step 7

Click the Details button to display the SSL certificate details.

Step 8

Next, click Display Sensitive Data as Encrypted to display this key as encrypted. When this button is clicked, the private keys are written to the configuration file in encrypted form (when Apply is clicked). When the text is displayed in encrypted form, the button becomes Display Sensitive Data as Plaintext enabling you to view the text in plaintext again.