3.13. Certificate
Description
An X. 509 certificate is used to authenticate a VPN client or gateway when establishing an IPsec
tunnel.
Properties
Name Specifies a symbolic name for the certificate.
(Identifier)
Type Local, Remote or Request.
CertificateData Certificate data.
PrivateKey Private key.
CRLChecks Specifies whether to check CRLs (Certificate
Revocation Lists) when validating certificates.
(Default: Enforced)
CRLDistPointList Specifies the CRL distribution points to use when
validating the certificate itself and any issued
certificates. Existing distribution points in the
certificates will be overriden. (Optional)
PKAType Encryption algorithm of the public key. (Default:
Unknown)
IsCA Is Certificate Authority. (Default: No)
Comments Text describing the current object. (Optional)
Chapter 3: Configuration Reference
137
To Next Page
Loading...
