SSL Certificate Requirements and Format

SSL Certificate Requirements and Format

To limit access to the CIM server to authorized clients, you can enable the HTTPS transport protocol between the CIM server and client. On the switch side, you must install a Secure Socket Library (SSL) certificate generated on the client and enable the HTTPS server. Certificates may be generated using third-party tools, such as openssl (available for UNIX, Mac, and Windows), and may be certified by a CA or self-signed.

The SSL certificate that you install on the switch must meet the following requirements:
The certificate file contains the certificate and the private key.

The private key must be RSA type.

The certificate file should be in Private Electronic Mail (PEM) style format and have .pem as the extension.
-----BEGIN CERTIFICATE----- 
(certificate goes here) 
-----END CERTIFICATE----- 
-----BEGIN RSA PRIVATE KEY----- 
(private key goes here) 
-----END RSA PRIVATE KEY----- 
 
Only one certificate file can be installed at a time.

Copyright 2010-2013, Cisco Systems, Inc. All rights reserved.