Managing Internal Certificates
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|193
To replace an internal CA certificate:
1. Click Replace Internal CA Certificate.
2. Click Browse to select the CA certificate file that includes the private key.
3. Enter the Certificate name and private key's password to allow the device to sign
certificates with the uploaded CA.
4. Enter the Host/IP address.
Normally, the device suggests its own host name (when DDNS is configured) or its
external IP address. If you have multiple Internet connections configured, in load sharing
mode, you can manually enter an accessible IP address for this appliance. This is used
by remote sites to access the internal CA and check for certificate revocation.
5. Click Apply
To export an internal CA certificate:
Click Export Internal CA Certificate to download the internal CA certificate.
To sign a remote site's certificate request by the internal CA:
1. Click Sign a Request.
2. Click Browse to upload the signing request file as created in the remote site.
In third party appliances, make sure to look in its Administration Guide to see where
signing requests are created.
The file must be in a path accessible to the appliance. After you click OK in the file
browsing window, the file is uploaded. If it is correctly formatted, it is signed by the
Internal CA and the Download button is available.
3. Click Download.
The signed certificate is downloaded through your browser and is available to be
imported to the remote site's certificates list.
Configuring High Availability
Background
Cluster maintains connections in the organization's network when there is a failure in one of
the Cluster Members. The cluster provides redundancy.
In the Device view > Advanced section > High Availability page you can create a cluster of
two appliances for high availability.
To Next Page
Loading...
