Cisco Preparative Procedures & Operational User Guide
© 2016 Cisco Systems, Inc. All rights reserved.
Firepower-chassis#
create keyring
keyring-name
3)
Set the TLS or IPsec key length in bits (RSA Only):
Firepower-chassis#
set modulus {mod1024 | mod1536 | mode2048 | mod512}
4)
Commit the transaction:
Firepower-chassis#
commit-buffer
4.5.6.3
Creating a Certificate Request for a Key Ring
1)
Enter services mode:
Firepower-chassis#
scope security
2)
Enter configuration mode for the key ring:
Firepower-chassis /security#
scope keyring
keyring-name
3)
Create a certificate request:
Firepower-chassis /security/keyring#
create certreq
4)
Specify the country code of the country in which the company resides:
Firepower-chassis /security/keyring/certreq#
set country
country-name
5)
Specify the Domain Name Server (DNS) address associated with the request:
Firepower-chassis /security/keyring/certreq#
set dns
DNS-name
6)
Specify the email address associated with the certificate request:
Firepower-chassis /security/keyring/certreq#
set e-mail
email-name
7)
Specify the IP address of the FXOS chassis:
Firepower-chassis /security/keyring/certreq#
set ip {
IPv4
|
IPv6
}
8)
Specify the city or town in which the company requesting the certificate is headquartered:
Firepower-chassis /security/keyring/certreq#
set locality
city-name
9)
Specify the organization requesting the certificate:
Firepower-chassis /security/keyring/certreq#
set org-name
org-name
10)
Specify the organizational unit:
Firepower-chassis /security/keyring/certreq#
set org-unit-name
org-unit-
name