Chapter 9: Security Management2253. You are prompted to confirm the deletion. Click OK.SSL CertificatesThe KX II uses the Secure Socket Layer (SSL) protocol for anyencrypted network traffic between itself and a connected client. Whenestablishing a connection, the KX II has to identify itself to a client usinga cryptographic certificate.It is possible to generate a Certificate Signing Request (CSR) and installa certificate signed by the Certificate Authority (CA) on the KX II. The CAverifies the identity of the originator of the CSR. The CA then returns acertificate containing its signature to the originator. The certificate,bearing the signature of the well-known CA, is used to vouch for theidentity of the presenter of the certificate.When a self signed certificate is created, the KX II date and time areused to create the validity period. If the KX II date and time are notaccurate, the certificate's valid from - to range may be incorrect, causingcertificate validation to fail. Make sure your KX II date/time is setcorrectly. See Configuring Date/Time Settings (on page 159).Note: The CSR must be generated on the KX II.Note: When upgrading firmware, the active certificate and CSR are notreplaced.To create and install a SSL certificate:1. Select Security > SSL Certificate.