1. Home
    2. /
  2. Manuals
    3. /
  3. Adtran
    4. /
  4. NetVanta 2100
    5. /
  5. 36
Page 176 / 210 Scroll up to view Page 171 - 175
Section 5, DLP-017
NetVanta 2000 Series System Manual
176
© 2002 ADTRAN, Inc.
61200361L1-1E
17.
Enter the alternate subject data you wish the Certificate Authority to use when generating your
certificate in the appropriate Subject Alt Name field. This information will be used again when
configuring your IKE tunnel, so a review of these fields is appropriate. The NetVanta 2000 series
supports four types of alternate subject data - IP address, Fully Qualified Domain Name (FQDN), User
FQDN (listed as e-mail rfc 822 on the test site), and Der ANS1 DN (binary DER encoding of an ASN.1
X.500 Distinguished Name listed as LDAP on the test site). To use the IP address you must enter the
WAN IP address of the NetVanta 2000 series that will contain this certificate. If the NetVanta 2000
series is configured for Dynamic or PPPoE addressing on the WAN interface, using the IP address is
not valid. To use the FQDN you must enter the DNS name for the NetVanta 2000 series that will
contain this certificate (example - netvanta.adtran.com). To use the User FQDN (rfc 822) enter your
e-mail address (example - [email protected]). To use the Der ANS1 DN (LDAP Name)
enter the X.500 ASN1 name for the NetVanta 2000 series that will contain this certificate (example -
1.3.6.1.4.1.664.1.147.5.1 or
iso.org.dod.internet.private.enterprises.adtran.adProducts.adTSUIQ.TechSupport.Unit1).
The remaining parameters on the test site Verify PKCS #10 data page are beyond the scope of this
DLP. These parameters would be established by your Certificate Authority and have no bearing on the
NetVanta 2000 series functionality.
Page 177 / 210
NetVanta 2000 Series System Manual
Section 5, DLP-017
61200361L1-1E
© 2002 ADTRAN, Inc.
177
18.
Scroll to the bottom of the page and click the Next Page button. The Final Certificate Parameters page
will appear.
19.
Select the radio button next to the appropriate CA chain you want the CA to use when generating your
certificate. This should match the key length you selected when generating the request. For our
example we used 1024, so we will select the first CA chain. Click the Next Page button.
Page 178 / 210
Section 5, DLP-017
NetVanta 2000 Series System Manual
178
© 2002 ADTRAN, Inc.
61200361L1-1E
20.
Highlight all the text in the box and hit <Ctrl + C> to copy the text. Paste this text to a notepad file to be
used later.
21.
The Certificate Authority’s certificate must be uploaded to the NetVanta 2000 series before loading the
self-certificate. Follow the instructions in DLP-019 to upload the Certificate Authority’s certificate to the
NetVanta 2000 series.
Follow-up Procedures
Once this procedure is complete, return to the procedure which referred you to this DLP and continue with
the tasks indicated there.
Page 179 / 210
61200361L1-1E
© 2002 ADTRAN, Inc.
179
UPLOADING A CA CERTIFICATE TO THE NETVANTA
Introduction
The NetVanta 2000 series supports the use of both RSA and DSS Signature Algorithm Certificates. The
NetVanta 2000 series provides the capability to generate self-certificate requests, and maintains a listing of
private keys (certificate requests) that currently have no public key (self-certificate assigned by the
Certificate Authority).
Before you can load the self-certificate provided by your Certificate Authority (CA) to the NetVanta 2000
series, you must load the CA’s certificate to the NetVanta 2000 series. Without the CA’s certificate the
NetVanta 2000 series cannot verify the received self-certificate.
This DLP discusses the steps for uploading a CA certificate from a test certificate website
(isakmp-test.ssh.fi). DLP-017 discusses generating the self-certificate request and DLP-018 discusses
uploading the received self-certificate.
Prerequisite Procedures
This DLP assumes the NetVanta 2000 series is connected to a PC and a browser session is active. Refer to
DLP-001 for more details.
Tools and Materials Required
No special tools or materials required.
To prevent electrical shock, do not install equipment in a wet location or during a
lightning storm.
Page 180 / 210
Section 5, DLP-018
NetVanta 2000 Series System Manual
180
© 2002 ADTRAN, Inc.
61200361L1-1E
DLP-018
Perform Steps Below in the Order Listed
1.
Log in to the NetVanta 2000 series as
admin
(see DLP-001 for details).
2.
From the main menu (located across the top of the screen) select
P
OLICIES
. The
M
ANAGE
L
ISTS
menu
and
U
SER
G
ROUP
submenu are automatically displayed.

Rate

4 / 5 based on 1 vote.

Popular Adtran Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top