[Contents] [Prev] [Next] [Index] [Report an Error]

Generating a Public-Private Key Pair

When you generate a public-private key pair, the device automatically saves the key pair in a file in the certificate store, where it is subsequently used in certificate request commands.

Before You Begin
For background information, read Understanding Public Key Cryptography Understanding Certificates Understanding Certificate Revocation Lists Using Digital Certificates

Before You Begin

For background information, read

Understanding Public Key Cryptography
Understanding Certificates
Understanding Certificate Revocation Lists
Using Digital Certificates

If the device renews a great number of certificates at once, thus using up keys rapidly, it might run out of pregenerated keys and have to generate them promptly for each new request. In this case, the generation of keys might affect the performance of the device, especially in a high-availability environment where the performance of the device might slow down for a number of minutes.

You must have root-level privileges to generate a public-private key pair. When you generate a public-private key pair on the device, the generated key pair is saved as certificate-id.priv.

This topic covers:

CLI Operation
Related Topics

[Contents] [Prev] [Next] [Index] [Report an Error]