11-12
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
11






Configuring

SSL
Using
SSL

Keys


For
t

he
Import
dialog
box,

see
Ta
b

l

e
11-4
.


For
the

Bulk

Import

dialog

box,

see
Ta

b

l

e
11-5

(ACE

module
A2(2.0),
ACE

appliance

A4(1.0),
and
later
releases

of

either

device

type

only).
Ta
b

l

e


11-4
SSL
Key

Pair

Import

Attributes
Field
Description
Protocol
Method
to

use

for

accessing

the

network

server:


FTP—FTP
i

s
to
be

used

to

access

t

he

network

server

when

importing

t

he

SSL

key

pair
file.


SFTP—SFTP
is

to

be

used

to

access
the
network

server

when

importing

the

SSL

key

pair

file.


TERMINAL—You
will
import

the

file

using

cut

and

paste

by

pasting

the

certificate

and

key
pair
information

to

the

terminal

display.

You

can

use

the

terminal

method

to

display

only

PEM
files,
which

are

in

ASCII

format.


TFTP—TFTP
is

to

be

used

to

access

the

network

server

when

importing

the

SSL

key

pair

file.
IP
Address
Field
that

appears

for

FTP,

TFTP,

and

SFTP.

Enter

the

IP

address

of

the

remote

server

on

which

the
SSL
key

pair

file

resides.
Remote
File

Name
Field
that

appears

for

si

ngle-file

SSL

key

pair

i

mporting

and

FTP,

TFTP,

and

SFTP.

Enter

the
directory
and

filename

of


the

single

key

pair

file

on

t

he

network

server.
Local
File

Name
Filename
to

be

used

for

the

single

SSL

key

pair

file

when

it

is

imported

to

the

ACE.
User
Name
This
field

appears

for

FTP

and

SFTP.

Enter

the

name

of

the

user

account

on

the

network

server.
Password
Field
that

appears

for

FTP

and

SFTP.

Enter

the

password

for

the

user

account

on

the

network

server.
Confirm
Field
that

appears

for

FTP,

SFTP,

and

TERMINAL.

Reenter

the

password.
Passphrase
Field
that

appears

for

FTP,

TFTP,

SFTP,

and

TERMINAL.

Enter

the

passphrase

that

was

created
with
the

file.

Without

this

phrase,

you

cannot

use

the

file.

Passphrases

are

used

only

with

encrypted
PEM
and

PKCS

files.
Confirm
Field
th

at

appears

for

FTP

an

d

SFTP.

Reenter

t

he

passphrase.
Non-Exportable
Check
box

to

specify

that

this

key

pair

file

cannot

be

exported

from

the

ACE.

The

ability

to

export
SSL
key

pair

files

allows

you

to

copy

key

pair

files

to

another

server

on

you

r

network

so

t

hat

you
can
then

import

them

onto

another

ACE

or

Web

server.

Exporting

is

similar

to

copying

in

that

the
original
files

are

not

deleted.
Uncheck
the

check

box

to

indicate

that

this

key

pair

file

can

be

exported

from

the

ACE.
Import
Text
Field
that

appears

for

Terminal.

Cut

the

key

pair

information

from

the

remote

server

and

paste

it
into
this

field.
Ta
b

l

e


11-5
SSL
Key

Pair

Bulk

Import

Attributes
Field
Description
Protocol
SFTP
is

to

be

used

to

access

the

network

server

when

importing

the

SSL

key

pairs.

SFTP

is

the

only
supported
protocol

for

bulk

import.
IP
Address
IP
address

of

the

remote

server

on

which

the

SSL

key

pair

files

resides.