| Sun Fire B10p SSL Proxy Blade Administration Guide |    
|
| Sun Fire B10p SSL Proxy Blade Administration Guide |
|
| A P P E N D I X C |
|
Requesting a Certificate |
Once you have generated a certificate request using the SSL proxy blade and also have exported the request to a file, it needs to be sent to a Certificate Authority (CA) so that a certificate will be issued. The process of obtaining a certificate is referred to as a certificate enrollment. Certificate enrollment procedures vary from CA to CA but in most cases, you either email the request or enter the information on the CA's web site. The CA ensures that the information you provided is accurate. Once the CA completes the issuance process, the certificate will be delivered to you by email.
Getting your certificate issued by a recognized CA is a guarantee that your server certificate will interoperate (be recognized and accepted) by well-known browsers such as Netscape.
Once the CA signed-certificate is available, it can be loaded into the SSL proxy blade. For SSL proxy blade commands on keys and certificates see Appendix A.
The following are well known certificate authorities:
There are two main reasons why certificates require some management time.
These issues become compounded with multiple certificates on multiple systems.
Like for every other information system task, good organizational skills are the best recommendation to minimize certificate management time. Commercial key management systems are a good solution where tight security controls are required.
The SSL proxy blade supports key management in the following manners.
| Sun Fire B10p SSL Proxy Blade Administration Guide | 817-0826-11 |
|
Copyright © 2004, Sun Microsystems, Inc. All rights reserved.