Table Of Contents
Managing CA Pools
Viewing CA Pools
Assigning CA Pools to Proxy Services
Adding CA Pools
Editing CA Pools
Deleting CA Pools
How Do I...
How do I add a new CA Pool?
Managing CA Pools
Certification authorities (CAs) are responsible for managing certificate requests and issuing digital certificates. A digital certificate contains information, such as a name, serial number, company, department, or IP address, that identifies a user or device. A digital certificate also contains a copy of the entity's public key. A CA can be a trusted third party, such as VeriSign, or a private (in-house) CA that you establish within your organization.
CVDM-SSLSM allows you to create trusted CA pools, which lists the CAs that the module can trust. You can select Trustpoints and create pools and assign a CA pool to one or more proxy services.
The following topics are described in this section:
•
Viewing CA Pools
• Assigning CA Pools to Proxy Services
• Adding CA Pools
• Editing CA Pools
• Deleting CA Pools
• How Do I...
Viewing CA Pools
You can view information on all CA Pools configured on SSLSM.
To view CA Pools:
Step 1 Click Setup at the top of the window, click PKI in the left-most pane, and select Trustpoints > CA Pools from the object selector. The CA Pools page appears.
This page displays the following fields:
Field
|
Description
|
Name
|
Name of the CA Pool.
|
Number of Trustpoints
|
Number of Trustpoints in the Pool.
|
Number of Proxy Services (Use Count)
|
Number of Proxy Services using the CA Pool.
|
Status
|
Status of the CA Pool.
A  icon indicates that all certificates in the CA Pool are valid. A  icon indicates that some certificates in the CA Pool are invalid. A  icon indicates that all certificates in the CA Pool are invalid.
|
Step 2 Select a CA Pool from the table. The following details are displayed:
Field
|
Description
|
Trustpoint Name
|
The name of the associated Trustpoint.
|
Status
|
The status of the associated Trustpoint.
A  icon indicates that the certificate is valid. A  icon indicates that the certificate invalid.
|
CA Name
|
The name of the certification authority associated with the Trustpoint.
|
Associated Proxy Services
|
Service Name
|
Name of service.
|
Client Side (Virtual)
|
Virtual IP address and port of the proxy service.
|
To assign CA Pools to proxy services, select a CA Pool, then click Assign to Proxy Services....
To add a new CA Pool, click Add.
To edit a CA Pool, select a CA Pool, then click Edit.
To delete a CA Pool, select a CA Pool, then click Delete.
Assigning CA Pools to Proxy Services
You can select proxy services and assign a CA Pool to the selected proxy service.
To assign CA Pools to proxy services:
Step 1 Click Setup at the top of the window, click PKI in the left-most pane, and select Trustpoints > CA Pools from the object selector. The CA Pools page appears.
Step 2 Select a CA Pool, then click Assign to Proxy Services. The Assign CA Pool to Proxy Services dialog box appears.
The following fields appear:
Field
|
Description
|
Pool Name
|
Name of the CA Pool.
|
Proxy Service Name
|
Name of the Proxy Service.
|
Client Side (Virtual)
|
IP address and port of the proxy service.
|
Selected Proxy Services
|
The list of selected proxy services.
|
Step 3 Select a Proxy Service name from the list, and click Add>> to assign the CA Pool to the service. Use << Remove to remove the CA pool from the list of services. Use Clear All to remove all the pools from the service.
Step 4 Click OK to complete assigning the CA pool to the selected Proxy Services.
Adding CA Pools
You can add new CA Pools and add Trustpoints to the CA pools.
To add CA Pools:
Step 1 Click Setup at the top of the window, click PKI in the left-most pane, and select Trustpoints > CA Pools from the object selector. The CA Pools page appears.
Step 2 Click Add. The Add CA Pool dialog box appears.
The following fields appear:
Field
|
Description
|
Pool Name
|
Name of the CA Pool.
|
Trustpoint Name
|
Name of the Trustpoint.
|
CA Name
|
Name of Trust CA Pool.
|
Pool Members
|
Members in the select CA Pool.
|
Step 3 Enter a Pool Name.
Step 4 Select a Trustpoint name from the list, and click Add>> to add the Trustpoint to the CA Pool. Use << Remove to remove the trustpoint name from the pool. Use Clear All to remove all the members of the pool.
Step 5 Click OK to complete adding the CA Pool.
Editing CA Pools
Step 1 Click Setup at the top of the window, click PKI in the left-most pane, and select Trustpoints > CA Pools from the object selector. The CA Pools page appears.
Step 2 Select a CA Pool from the table, and Click Edit. The Edit CA Pool dialog box appears.
The following fields appear:
Field
|
Description
|
Pool Name
|
Name of the CA Pool.
|
Trustpoint Name
|
Name of the Trustpoint.
|
CA Name
|
Name of Trust CA Pool.
|
Pool Members
|
Members in the select CA Pool.
|
Step 3 Select a Trustpoint name from the available Trustpoints, and click Add>> to add the Trustpoint to the CA Pool. Use << Remove to remove the trustpoint name from the pool members. Use Clear All to remove all the members of the pool.
Step 4 Click OK to complete editing the CA Pool.
Deleting CA Pools
To delete CA Pools:
Step 1 Click Setup at the top of the window, click PKI in the left-most pane, and select Trustpoints > CA Pools from the object selector. The CA Pools page appears.
Step 2 Select a CA Pool from the table, and click Delete.
Step 3 Confirm delete action. A warning message appears if the selected CA Pool is associated with any Proxy Service.
How Do I...
This section describes on how to achieve a task. The following question is answered:
• How do I add a new CA Pool?
How do I add a new CA Pool?
Step 1 Click Setup at the top of the window, click PKI in the left-most pane, and select Trustpoints > CA Pools from the object selector. The CA Pools page appears.
Step 2 Click Add. The Add CA Pool dialog box appears.
Step 3 Enter a Pool Name.
Step 4 Select a Trustpoint name from the list, and click Add >> to add the Trustpoint to the CA Pool. Use << Remove to remove the trustpoint name from the pool. Use Clear All to remove all the members of the pool.
Step 5 Click OK to complete adding the CA Pool.
