Administrator Guide
X.509v3
Dell Networking OS supports X.509v3 standards.
Topics:
• Introduction to X.509v3 certication
• X.509v3 support in Dell Networking OS
• Information about installing CA certicates
• Information about Creating Certicate Signing Requests (CSR)
• Information about installing trusted certicates
• Transport layer security (TLS)
• Online Certicate Status Protocol (OSCP)
• Verifying certicates
• Event logging
Introduction to X.509v3 certication
X.509v3 is a standard for public key infrastructure (PKI) to manage digital certicates and public key encryption.
The X.509v3 standard species a format for public-key certicates or digital certicates.
Transport Layer Security (TLS) relies on public key certicates to work.
X.509v3 certicates
A X.509v3 or digital certicate is an electronic document used to prove ownership of a public key. It contains information about the key's
identity, information about the key's owner, and the digital signature of an entity that has veried the certicate's content as correct.
Certicate authority (CA)
The entity that veries the contents of the digital certicate and signs it indicating that the certicate is valid and correct is called the
Certicate Authority (CA).
Certicate signing requests (CSR)
In an X.509v3 system, an entity that wants a signed certicate or a digital certicate requests one through a Certicate Signing Request
(CSR).
How certicates are requested
The following enumeration describes the generic steps that are involved in issuing a digital certicate:
68
1138 X.509v3