Deployment Guide
9. In the Retention Policy area, specify values in the Minimum Period and Maximum Period fields that are
appropriate for your organization’s retention policy. The default data retention policy specifies a minimum period
of 12 weeks and a maximum period of 52 weeks.
NOTE: To enable the Delete Certificate and Delete Request actions in the Certificate Management list view, use a blank value for
Minimum Period. This is useful for testing and initial deployment.
10. The information in the Identity, Private Key, and Self-Signed Certificate areas cannot be edited after creation.
11. Click Edit Certificate Authority to complete your changes.
Requesting a Certificate for the Certificate Authority
The Intermediate Certificate Request page displays the certificate signing request for the certificate authority’s
intermediate certificate.
You can copy the certificate signing request in text format using your Web browser. Use this option when you can
paste the request directly into another application to obtain a certificate.
You can click the Download the current CSR link to download the certificate signing request as a file. Use this
option when you need to provide the certificate signing request as a file to obtain a certificate.
Once you have obtained the certificate, click the Install a signed certificate link to continue configuring the
intermediate certificate authority. See "Installing a Certificate Authority’s Certificate " on page 91.
You can also click the Change CA settings link to return to the main Certificate Authority Settings form. Use
this option to switch to a root CA, or to change the name or properties of the intermediate CA and reissue the
certificate signing request.
Installing a Certificate Authority’s Certificate
You can import a private key and certificate pair to use for the root certificate or intermediate certificate. The CA
Certificate Import page may be used to:
l Upload a certificate that has been issued by another certificate authority. This process is required when
configuring an intermediate certificate authority.
n A private key is not required, as the certificate authority has already generated one and used it to create the
certificate signing request.
l Upload a certificate and private key to be used as the certificate authority’s certificate. This process may be used
to configure a root certificate authority.
n A private key is required, as the certificate authority’s existing private key will be replaced.
NOTE: This form may be used multiple time in order to import each of the certificates in the trust chain. Check the message
displayed above the form to determine which certificate or type of file must be uploaded next.
To upload a certificate:
1. On either the Certificate Management or Intermediate Certificate Settings page, click the Import Certificate
link above the form. The Step 1 area of the CA Certificate Import form opens.
Dell Networking W-ClearPass Guest 6.1 | Deployment Guide Onboard | 91