© 2003, Cisco Systems, Inc. All rights reserved.
An end-user (or end-entity) must obtain a digital certificate from the CA to participate in a certificate exchange. This is known as the enrollment process. It requires three steps:
Step 1 Each user generates a private and public key pair.
Step 2 The requestor generates a certificate request and sends it to the CA.
Step 3 The CA transforms the certificate request into a digital certificate and returns both a root and identity digital certificate to the requestor.
Step 4 The requestor installs the root certificate into the Concentrator first. While installing the identity certificate, the Concentrator uses the public key from the root certificate to validate the signature of the identity certificate.
Was this article helpful?