Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
When you are your own CA, you determine this information yourself. The Public Key Infrastructure (PKI) provides an infrastructure for digital certificate management. In general, PKI is a hierarchy of trust that enables users of a public network to securely and privately exchange data through the use of public and private cryptographic key pairs that are obtained and shared with peers through a trusted authority. Junos OS uses public/private keys in the following areas: SSH/SCP (for secure command-line interface [CLI]-based administration) Secure Sockets Layer (SSL) Internet Key Exchange (IKE) (for IPsec VPN tunnels) To ramp up on general certificates and PKI information, click: Understanding Certificates and PKI This article provides answers to the most common questions about certificates and PKI for Junos OS devices
If you want to use a public key infrastructure (PKI), you must obtain third-party certificate authority (CA) software to implement the PKI or use a service such as Verisign