254
Verifying the configuration
After the configuration, select Authentication > Certificate Management > Certificate from the navigation
tree to view detailed information about the retrieved CA certificate and local certificate, or select
Authentication > Certificate Management > CRL from the navigation tree to view detailed information
about the retrieved CRL.
Configuration guidelines
When you configure PKI, note the following guidelines:
• Make sure the clocks of entities and the CA are synchronous. Otherwise, the validity periods of
certificates are abnormal.
• The Windows 2000 CA server has some restrictions on the data length of a certificate request. If the
PKI entity identity information in a certificate request goes beyond a certain limit, the server does
not respond to the certificate request.
• The SCEP plug-in is required when you use the Windows Server as the CA. In this case, you must
specify RA as the authority for certificate request when configuring the PKI domain.
• The SCEP plug-in is not required when you use the RSA Keon software as the CA. In this case, you
must specify CA as the authority for certificate request when configuring the PKI domain.
Commentaires sur ces manuels