4

Creating a Key Pair and Public-Key Certificate with Subject Alternative Name (SA...

 2 years ago
source link: https://blogs.sap.com/2022/05/19/creating-a-key-pair-and-public-key-certificate-with-subject-alternative-name-san/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
neoserver,ios ssh client

Procedure

  1. Open the Key Storage Content tab.
  2. Select the view for which you want to create a key pair and certificate from the Key Storage Views.
    Key-Storage-Content-tab-1.png
  3. In the View Entries tab, choose Create.

    The New Entry dialog appears.

  4. In Step 1, define the basic settings of the new entry.
    1. In the Entry Name field, specify a name for the certificate.
    2. Select the certificate algorithm in Algorithm, for example, RSA (Rivest, Shamir, Adleman) or DSA (Digital Signature Algorithm).
    3. Choose the certificate key length in Key Length.
    4. Specify the certificate validity period in the Valid From and Valid To fields.

      Enter the values using the format mm/dd/yyyy.

    5. If you want to have a copy of the new certificate as a separate keystore entry next to the new key pair in the key storage, select Store Certificate.

    Choose Next.

    1.-Entry-Settings.png
  5. In Step 2, specify the properties of the Subject field for the certificate. If no property has value, the Subject Alternative Name extension will be denoted as critical.

    Choose Next.

    2.-Subject-Properties-tab.png
  6. In Step 3, specify the properties of the Subject Alternative Name extension of the certificate. If at least one property of the Subject has a value, the Subject Alternative Name extension will be denoted as non-critical.
    • Add the directory name properties. You can also use the Move Up and Move Down buttons to sort the properties.
      2a.-Subject-Properties-tab.png
    • Add all other subject alternative name properties and choose Next.
      3.-Subject-Alternative-Name.png
  7. In Step 4, sign the new entry with a key pair and choose the signature hashing algorithm for the certificate. This step is optional.

    If you want to specify a Certification Authority (CA) key pair, choose Select Issuer Key Pair and select the view from which to specify the CA key pair.

    4.-Sign-with-Key-Pair.png

    If you create a self-signed certificate, then specify hashing algorithm for the certificate signature in the Signature Hashing Algorithm menu. If you specify a signing CA , the hashing algorithm will be used from the CA certificate.

    Choose Next.

  8. In Step 5, preview your settings.

    To create the new entry, choose Finish.

    5.-SummaryPNG.png

report

Recommend

About Joyk


Aggregate valuable and interesting links.
Joyk means Joy of geeK