A RADIUS certificate links identity information with a public key enclosed in the certificate. A certificate authority (CA) is a network authority that issues and manages security credentials and public keys for message encryption. The CA signs all digital certificates it issues with its own private key. The corresponding public key is contained within the certificate and is called a CA certificate.
To define a RADIUS Trustpoint configuration, utilize an existing stored trustpoint or launch the certificate manager to create a new one:
RADIUS Certificate Authority |
Click Pending to use a certificate that is in the process of being created or is yet to be created. Because such certificates will not be listed under the Stored drop-down, use this method instead. Using this option is not a guarantee that the trustpoint will work as intended if the trustpoint is not loaded on to the device. The trustpoint can be created later, however, it must be present on the device when the device is deployed. Click Stored to enable a drop-down menu where an existing certificate can be leveraged or use default-trustpoint. To make use of an existing certificate, click Launch Manager. |
RADIUS Server Certificate |
Click Pending to use a certificate that is in the process of being created or is yet to be created. Because such certificates will not be listed under the Stored drop-down, use this method instead. Using this option is not a guarantee that the trustpoint will work as intended if the trustpoint is not loaded on to the device. The trustpoint can be created later, however, it must be present on the device when the device is deployed. Click Stored to enable a drop-down menu where an existing certificate can be leveraged or use default-trustpoint. To make use of an existing certificate, click Launch Manager. |
HTTPS Trustpoint | Either use the default-trustpoint or click Stored to enable a drop-down menu where an existing certificate/trustpoint can be used. To use an existing certificate for this device, click Launch Manager. For more information, see Certificate Management. |