此计算机上已安装了证书服务器。
请重试或选择其它的证书服务器。
证书服务器无效。
证书服务器无效。请重试或选择其它的证书服务器。
The certificate server is unavailable. Try again or choose another certificate server.
这并非不安全,但如果您有许多客户机,要将所有这些签名证书(每个服务器对应一个)分发到所有客户机将会变得非常难以管理。
This is no less secure, but if you have many clients, it is much harder to manage distributing all of those signing certificates (one for each server) to all clients.
对于这种信任,客户机必须信任签署服务器证书的CA。
For this trust, a client must trust the ca which signed the server certificates.
请注意,在前面涉及客户端身份验证的场景中,客户端提供一个证书,然后服务器针对受信任的证书集对其进行检验。
Notice that in the previous scenario involving client authentication, the client presents a certificate that is validated by the server against the set of trusted certificates.
将服务器证书导入到客户机信任存储中。
SSL使用数字证书为加密、服务器验证以及客户机验证(可选)提供密钥交换服务。
SSL USES digital certificates to exchange keys for encryption, server authentication, and optionally, client authentication.
CA的证书是在主服务器上创建的。
将客户机证书导入到服务器信任存储区中。
通过执行下面的命令,使用客户机公钥证书为服务器创建信任存储。
Create the trust store for the server with the client's public key certificate by executing the following command.
附录b—人工地识别服务器证书。
通过键入下面的命令,导出客户机公钥证书以将其导入到受信任的客户机证书的服务器存储中。
Export the client public key certificate so it can be imported into the service's store of trusted client certificates by typing the following command.
学习了如何颁发证书和使用证书进行服务器身份验证,还配置了CommunityEdition并使用证书进行客户端身份验证。
You learned how to issue a certificate to be used for server authentication and configured Community Edition for client authentication using certificates.
如果愿意,可以导出这个证书而不是服务器证书。
If desired this can be exported here as well or instead of the server certificate.
其包括一台没有公钥证书的客户机,该客户机通过公钥证书访问服务器。
It consists of a client with no public key certificate, accessing a server with a public key certificate.
接下来,要生成由证书机构进行签署的服务器证书。
Next, generate the server certificate that will be signed by the certificate Authority.
接收进入服务器密钥数据库的服务器证书。
Receive the server certificate into the server's key database.
要验证发行这个证书的服务器是一个已经批准过的LDAP服务器,客户机被配置为只接受本地证书机构(CA)所签署的证书。
To verify that the server issuing the certificate is an approved LDAP server, the client is configured only to accept certificates that are signed by a local certificate Authority (ca).
借助服务器的数字证书,客户机还可以验证服务器的身份。
With the server's digital certificate, the client can also verify the server's identity.
在握手时所提供的服务器的证书应该有一个名字与该服务器的主机名匹配。
The server's certificate provided in the handshake should have a name on it that matches the server's host name.
可以根据证书撤销列表检查服务器的证书,这一点是可选的。
The Server's certificate might be optionally checked against a certificate Revocation List.
选择这个个人证书,添加被签证的证书(图4),然后从拷贝的位置添加这个服务器证书。
Select the personnel certificate, add signer certificates (Figure 4), and then add the server certificate from the copied location.
选择可信的根证书或任何其他证书类别,把刚才创建的服务器证书导入到其中。
Select the trusted root certificate or any other certificate category accordingly and import the server certificate that you had created into it.
在我们的示例中,由于服务器的证书是自签署的,我们需要将服务器的公钥证书配置为客户机受信任的签署者。
In our case, because the server's certificate will be self-signed, we need to configure the server's public key certificate as a trusted signer for the client.
CA的证书在故障转移服务器和代理创建和注册证书时被复制到其上。
The ca's certificates are copied to the failover servers and the agents when creating and registering their certificates.
CA的证书在故障转移服务器和代理创建和注册证书时被复制到其上。
The ca's certificates are copied to the failover servers and the agents when creating and registering their certificates.
应用推荐