Obtaining PKI Files

Obtain from your organization’s public key infrastructure (PKI) administrator three files per context:

■

RSA private key file of 2048/3072/4096 bit, encoded in plaintext Base64 format or ECDSA private key files of 256/384/521 bit encoded in plaintext Base64 format. In this document, the name given to this file is dev_pkey.pem.

■

X509 certificate file, encoded in plaintext Base64 format, containing the matching RSA/ECDSA public key. In this document, the name given to this file is dev_cert.pem.

■

X509 certificate file, encoded in plaintext Base64 format, containing trusted chain(s) of certificates to be trusted by the device. In this document, the name given to this file is root.pem.

It is assumed that these certificates have been configured appropriately in the user’s web browsers and that the environment has been secured.