Managing the User Database
Adding a Local CA User
To add a local CA user, perform the following steps:
To enter a new user into the local CA database, click Add to display the Add User dialog box.
Step 1
Enter a valid username.
Step 2
Enter an existing valid e-mail address.
Step 3
Enter the subject (DN string). Alternatively, click Select to display the Certificate Subject DN dialog
Step 4
box.
Choose one or more DN attributes that you want to add from the drop-down list, enter a value, and then
Step 5
click Add. Available X.500 attributes for the Certificate Subject DN are the following:
•
•
•
•
•
•
•
Step 6
Click OK when you are done to close the Certificate Subject DN dialog box.
Check the Allow enrollment check box to enroll the user, and then click Add User.
Step 7
The new user appears in the Manage User Database pane.
Sending an Initial OTP or Replacing OTPs
To automatically send an e-mail notice of enrollment permission with a unique OTP and the local CA
enrollment URL to the newly added user, click Email OTP.
An Information dialog box appears indicating that the OTP was sent to the new user.
To automatically reissue a new OTP and send an e-mail notice with the new password to an existing or
new user, click Replace OTP.
Editing a Local CA User
To modify information about an existing local CA user in the database, perform the following steps:
Select the specific user and click Edit to display the Edit User dialog box.
Step 1
Enter a valid username.
Step 2
Enter an existing valid e-mail address.
Step 3
Enter the subject (DN string). Alternatively, click Select to display the Certificate Subject DN dialog
Step 4
box.
Cisco ASA 5500 Series Configuration Guide using ASDM
35-26
Common Name (CN)
Department (OU)
Company Name (O)
Country (C)
State/Province (ST)
Location (L)
E-mail Address (EA)
Chapter 35
Configuring Digital Certificates
OL-20339-01