Lexmark MX718 Embedded Web Server--Security: Administrator s Guide - Page 66
Appendix, Appendix A: CA file creation, Appendix B: CA-Signed Device Certificate creation, Appendix
View all Lexmark MX718 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 66 highlights
Appendix 66 Appendix Appendix A: CA file creation Note: This example of generation of a CA file for the Certificate Authority assumes usage of a Windows Certificate Authority server. 1 Point the browser window to the CA. Make sure to use the URL, http//
Appendix
Appendix A: CA file creation
Note:
This example of generation of a CA file for the Certificate Authority assumes usage of a Windows
Certificate Authority server.
1
Point the browser window to the CA. Make sure to use the URL, http//<CA’s address>/CertSrv, where
CA’s
address
is the IP address or host name of the CA server.
Note:
Before the CA Web page opens, a Windows login window may pop up and request user
credentials to verify that you have access to the CA Web page.
2
Click
Download a CA certificate, certificate chain, or CRL
.
3
Click
Base 64 encoded
, and then click
Download CA Certificate
.
Note:
DER encoding is not supported.
4
Save the certificate that is offered in a file. The file name is arbitrary, but the extension should be “.pem”.
Appendix B: CA
‑
Signed Device Certificate creation
Note:
This example of generation of a CA file for the Certificate Authority assumes usage of a Windows
Certificate Authority server.
1
Point the browser window to the CA. Make sure to use the URL, http//<CA’s address>/CertSrv, where
CA’s
address
is the IP address or host name of the CA server.
2
Click
Request a certificate
.
3
Click
advanced certificate request
.
4
Click
Submit a certificate request by using a base
‑
64
‑
encoded
.
5
Paste the (.csr prompted) information copied from the device into the Saved Request field, and then select
a Web Server
‑
type certificate template.
6
Click
Submit
.
Note:
The server takes a moment or two to process the request, and then presents a dialog window.
7
Select
Base 64 encoded
, and then click
Download Certificate
.
Note:
DER encoding is not supported.
8
Save the certificate that is offered in a file. The file name is arbitrary, but the extension should be “.pem”.
Appendix C: Automatic Certificate Enrollment Application
This application, after installation, will automatically create a device certificate signing request and pass the
signing request on to the Certificate authority (CA) for approval. It will then retrieve the CA signed device
certificate, and then install the certificate. The previous manual process is replaced by a simple process with
only limited initial setup required.
Appendix
66