Virtual Private Network > Virtual Private Network Certificates
Virtual Private Network
210
RM GUI HiSecOS EAGLE20/30
Release
3.0
09/2015
Virtual Private Network > Virtual Private Network Certificates
5.2 Virtual Private Network
Certificates
A Certificate Authority (CA) issues certificates to authenticate the identity of
devices requesting a VPN tunnel. You configure the devices that form a VPN
tunnel to trust the CA that signed the certificate. When a trusted CA issues a
certificate, the device considers it to be valid. Using a trusted CA, allows you
to add, renew, and change the certificates loaded on the device without
affecting the VPN as long as the actual identity information is correct.
Using certificates also allows you to reduce the required maintenance work.
The reason for this is because you change certificates less often as you
change pre-shared keys. The CA creates certificates with commence and
expiration date, the certificate is only valid during this time. When a certificate
expires, the device requires a new certificate.
You create a self signed certificate using the strongSwan application in
conjunction with the Linux Operating System.
Note: RC2 certificate encryption algorithms are unsupported. For example,
PKCS12 containers with RC2 encryption or passphrase protection.
Table
Parameters Meaning
Index Displays the row index of the certificate entry.
Possible values:
1..100
File Name Displays the name of the file upload to the device.
Possible values:
alphanumeric ASCII character string with 1..64 characters.
To Next Page
Loading...