HP Ew2400 HP Jetdirect Print Servers - HP Jetdirect and SSL/TLS - Page 81
Correct HP Jetdirect CA Configuration
UPC - 882780301306
View all HP Ew2400 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 81 highlights
R2's Info + R2's Public Key RootCA's Digital Signature R2's Certificate RootCA.example.internal Root Certificate Authority: RootCA R2.example.internal Subordinate Certificate Authority: R2 RootCA's Info + RootCA's Public Key RootCA's Digital Signature RootCA's Certificate What Certificates should be configured on Jetdirect so that an SSL Client will be successful? RootCA's Info + RootCA's Public Key RootCA's Digital Signature CORRECT! RootCA's Certificate LJ 4345MFP's Info + Public Key R2's Digital Signature LJ 4345MFP's Identity Certificate Figure 35 - Correct HP Jetdirect CA Configuration Be sure the Root CA of your CA Hierarchy has its public key certificate configured on Jetdirect! Here is a question for you: When Jetdirect is acting as a client and receives the server's certificate signed by R2, how can it know that R2's certificate was signed by RootCA? The answer: It cannot! Another special thing must happen: The server must send R2's CA certificate along with its own certificate. This allows Jetdirect to "walk the chain" and verify the certificate chain is valid. Refer to Figure 36 - Walking the Chain 1 81