Manage Certificates on the FindIT Network Manager

Available Languages

Download Options

  • PDF     (549.5 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (680.3 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (395.5 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:December 12, 2018
Document ID:SMB5667

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Manage Certificates on the FindIT Network Manager

Objective

A digital certificate certifies the ownership of a public key by the named subject of the certificate. This allows relying parties to depend upon signatures or assertions made by the private key that corresponds to the public key that is certified. Upon installation, the FindIT Network Manager generates a self-signed certificate to secure web and other communication with the server. You can choose to replace this certificate with the one signed by a trusted certificate authority (CA). To do this, you will need to generate a certificate signing request (CSR) for signing by the CA.

You can also choose to generate a certificate and the corresponding private key completely independent of the Manager. If so, you can combine the certificate and private key into a Public Key Cryptography Standards (PKCS) #12 format file prior to upload.

The FindIT Network Manager only supports .pem format certificates. If you get other certificate formats, you need to convert the format or request for the .pem format certificate again from the CA.

This article provides instructions on how to manage certificates on FindIT Network Manager.

Applicable Devices

  • FindIT Network Manager

Software Version

  • 1.1

Manage Certificates on FindIT Network Manager

Generate a CSR

Step 1. Log in to the Administration GUI of your FindIT Network Manager then choose Administration > Certificate.

Images/****.png

Step 2. In the CSR area, click the Create button.

The values entered in the Certificate form will be used to construct the CSR, and will be contained in the signed certificate you receive from the CA.

Step 3. Enter the IP address or domain name in the Full qualified domain name field. In this example, hostname.cisco.com is used.

Images/****.png

Step 4. Enter the country code in the Country field. In this example, US is used.

Images/****.png

Step 5. Enter the state code in the State field. In this example, CA is used.

Images/****.png

Step 6. Enter the city in the City field. In this example, Irvine is used.

Images/****.png

Step 7. Enter the organization name in the Org field. In this example, Cisco is used.

Images/****.png

Step 8. Enter the organization units in the Org Units field. In this example, Small Business is used.

Images/****.png

Step 9. Enter your email address in the Email field. In this example, ciscofindituser@cisco.com is entered.

Images/****.png

Step 10. Click Save.

Images/****.png

The CSR file will be automatically downloaded to your computer. In this example, system.csr.pem file is generated.

Images/****.png

Step 11. (Optional) In the CSR area, the status will be updated from N/A to Created. To download the created CSR, click the Download button.

Images/****.png

Step 12. (Optional) To update the created CSR, click the Update button then return to Step 3.

Images/****.png

You should now have successfully generated a CSR on your FindIT Network Manager. You can now send the downloaded CSR file to the CA.

Upload a Signed Certificate from the CA

Once you receive the signed CSR from the CA, you can now upload it to the Manager.

Step 1. Log in to the Administration GUI of your FindIT Network Manager then choose Administration > Certificate.

Images/****.png

Step 2. In the HTTPS Certificate area, click the Update button.

Images/****.png

Step 3. Click the UploadCert radio button.

Images/****.png

Note: Alternatively, you can upload a certificate with the associated private key in PKCS#12 format by choosing the Upload PKCS12 radio button. The password to unlock the file should be specified in the Password field provided.

Images/****.png

Step 4. Drop the signed certificate on the target area, or click the target area to browse the file system then click Open. The file should be in .pem format.

Images/****.png

Note: In this example, signed-system.csr.pem is used.

Step 5. Click Upload.

Images/****.png

You should now have successfully uploaded a signed certificate to the FindIT Network Manager.

Manage Current Certificate

Step 1. Log in to the Administration GUI of your FindIT Network Manager then choose Administration > Certificate.

Images/****.png

Step 2. In the HTTPS Certificate area, click the View button.

Images/****.png

Step 3. The current certificate will be displayed in plain text format in a new browser window. Click the x or Cancel button to close the window.

Images/****.png

Step 4. (Optional) To download a copy of the current certificate, click the Download button in the HTTPS Certificate area.

Images/****.png

You should now have successfully managed the current certificate on your FindIT Network Manager.

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products