User's Manual

Using the CMC Web Interface 175
Generating a New Certificate Signing Request
To ensure security, it is strongly recommended that you obtain and upload a
secure server certificate to CMC. Secure server certificates ensure the identity
of a remote system and that information exchanged with the remote system
cannot be viewed or changed by others. Without a secure server certificate,
CMC is vulnerable to access from unauthorized users.
Table 5-46. SSL Main Menu Options
Field Description
Generate a New
Certificate Signing
Request (CSR)
Select this option and click Next to open the Generate
Certificate Signing Request (CSR) page, where you can
generate a CSR request for a secure Web certificate to
submit to a certificate authority.
NOTE: Each new CSR overwrites any previous CSR on CMC.
For a certificate authority to accept your CSR, the CSR in CMC
must match the certificate returned from the certificate
authority.
Upload Server
Certificate Based on
Generated CSR
Select this option and click Next to display the Certificate
Upload page, where you can upload an existing certificate
that your company holds title to and uses to control access
to CMC.
NOTE: Only X509, Base 64-encoded certificates are accepted
by CMC. DER-encoded certificates are not accepted.
Uploading a new certificate replaces the default certificate
you received with your CMC.
Upload Webserver key
and Certificate
Select this option and click Next to open the Webserver Key
and Certificate Upload page, where you can upload an
existing Web server key and server certificate that your
company holds title to and uses to control access to CMC.
NOTE: Only X.509, Base64 encoded certificates are accepted
by CMC. Binary DER-encoded certificates are not accepted.
Uploading a new certificate replaces the default certificate
you received with your CMC.
View Server Certificate Select the option and click the Next button to open the
View Server Certificate page where you can view the
current server certificate.