Chapter 4 Using the Configuration Manager
Generating Keys and Certificates
4-24
Cisco 11000 Series Secure Content Accelerator Configuration Guide
78-13124-06
Generating Keys and Certificates
RSA private keys, certificates, and certificate signing requests can be generated
directly on the device.
Example: Generating an RSA Key
1.
Enter Privileged, Configuration, SSL Configuration, and Key Configuration
modes, creating a key named myGenKey.
SCA> enable
SCA# configure
(config[myDevice])# ssl
(config-ssl[myDevice])# key myGenKey create
(config-ssl-key[myGenKey])#
2.
Enter the following command to generate a 1024-bit key using the seed string
lemon. The key is displayed once using DES encryption. The resulting key is
stored on the device as well as exported to a PEM-encoded file named
mykey.pem. (This command must be entered on one line.)
(config-ssl-key[myGenKey])# genrsa bits 1024 encrypt des seed
lemon output https://www.mywebsite.com/mykey.pem
Note
Using the HTTPS protocol ensures that your key is transmitted
securely.
Example: Generating a Certificate
1.
Enter Privileged, Configuration, and SSL Configuration modes.
SCA> enable
SCA# configure
(config[myDevice])# ssl
(config-ssl[myDevice])#