Configuring Entity Information
When applying for certificates, an entity must add entity information to a certificate request file and send the file to the CA. The CA uses a piece of important information to describe an entity, and identifies the entity using a unique Distinguished Name (DN).
Context
The local certificate associates user identity information with the user public key, while the identity information must be associated with a specific PKI entity. The CA identifies the certificate applicant based on the identity information that the entity provides. The entity information includes:
- Common name of the entity
- Country code of the entity
- Email address of the entity
- Fully Qualified Domain Name (FQDN) of the entity
- IP address of the entity
- Name of the region where the entity resides
- Organization name of the entity
- Department name of the entity
- State or province of the entity
Procedure
- Run system-view
The system view is displayed.
- Run pki entity entity-name
An entity name is created and the entity view is displayed.
- Configure entity attributes.
Run common-name cn-name
The common name of the entity is configured.
(Optional) Run country country-code
The country code of the entity is specified.
(Optional) Run email email-address
The email address of the entity is configured.
(Optional) Run fqdn fqdn-name
The FQDN of the entity is configured.
(Optional) Run ip-address ip-address
The IP address of the entity is configured.
(Optional) Run locality locality-name
The name of the locality where the entity resides is specified.
(Optional) Run organization organization-name
The organization name of the entity is specified.
(Optional) Run organization-unit org-unit
The department name of the entity is configured.
(Optional) Run state state-province-name
The department name of the entity is configured.
- Run commit
The configuration is committed.