Virtual PrivateNetworks(VPN) IPsec
IX20 User Guide
534
5. Click Enable to enable the SCEPclient.
6. For Maximum Polling Time, type the maximum time that the device will poll the SCEPserver,
when operating in manual mode.
Allowed values are any number of weeks, days, hours, minutes, or seconds, and take the
format number{w|d|h|m|s}.
For example, to set Maximum Polling Time to ten minutes, enter 10m or 600s.
The default is 1d.
7. For Polling Interval, type the amount of time that the device should wait between polling
attempts, when operating in manual mode.
Allowed values are any number of weeks, days, hours, minutes, or seconds, and take the
format number{w|d|h|m|s}.
For example, to set Polling Interval to ten minutes, enter 10m or 600s.
The default is 5s.
8. For Key Length, type the bit size of the private key. The default is 2048.
9. For Renewable Time, type the number of daysthat the certificate enrollment can berenewed,
prior to the request expiring. This value is configured on the SCEPserver, and is used by the
IX20 device to determine when to start attempting to auto-renew an existing certificate. The
default is7.
10. (Optional) Click Debug to enable verbose logging in /var/log/scep_client.
11. Click to expand SCEP server.
12. For FQDN, typethe fully qualified domain name or IPaddress of the SCEPserver.
13. (Optional) For CA identity, typea string that will be understood by the certificate authority.
For example, it could be a domain name or a user name. If the certificate authority has
multiple CA certificates, this field can beused to distinguish which is required.
To Next Page
Loading...