SSL Server Certificate Configuration208 Netscape Certificate Management System Installation and Setup Guide • March 2002• Token password_________________________________________________The password for the token must be at least one character long.• Key type_________________________________________________RSA or DSA.• Key length_______________________________________________For domestic versions of Netscape Certificate Management System, availablesettings for RSA are 512, 768, 1024, 2048, or Custom, and available settings forDSA are 512, 1024, or Custom (in increments of 64 bits only).• Message Digest Algortihm (select one): SHA1___ MD2___ MD5___Select the message digest algorithm to use for generating digital signatures oncertificates.Subject Name for SSL Server Certificate• Common Name (CN=) _____________________________________• Organizational Unit (OU=) ___________________________________• Organization (O=) ________________________________________• Locality (L=) _____________________________________________• State (ST=) ______________________________________________• Country (C=) ____________________________________________A DN is a series of name-value pairs that in combination uniquely identify anentity. The subject DN identifies the CA signing certificate. You are notrequired to enter all the values, but must enter the Organization (O), such asyour company name. The Organization is required because its absence causesNetscape Communicator (version 4.6 or below) to crash. For more informationabout distinguished names, see Apendix A, “Distinguished Names,” in CMSPlug-Ins Guide.Validity Period for SSL Server CertificateYou can specify the validity period for an SSL server certificate only if you areinstalling a Certificate Manager and you have decided to have that the CertificateManager issue the certificate. If the SSL server certificate is issued by a remote CA,its validity period is determined by the issuing CA.