Configuring with Web Based Management
4.9 Security
SINEMA Remote Connect - Server
Operating Instructions, 11/2017, C79000-G8976-C383-04
87
Managing certificates
4.9.1.1
Overview of certificate management
Certificate types
Admin RC uses different certificates to authenticate the various participants when
establishing a VPN connection. These include:
Description in section
...
CA certificate The CA certificate is a certificate issued by the "Certificate
Authority" from which certificates are derived.
So that a certificate is derived, a private key belongs to every
CA certificate. The derived certificates are signed with the
private key.
The signature of the derived certificate is checked with the
public key of the CA certificate.
When SINEMA RC Server is installed a CA certificate is
generated. When necessary the CA certificate can be re-
newed.
The server, device and user certificates are derived from the
currently valid CA certificate.
Th
e key exchange between the device and the VPN gateway
of the partner takes place automatically when establishing
the OpenVPN connection. No manual exchange of key files
*.crt CA certificate
(Page 90)
Server certificate Server certificates are required to establish secure communi-
cation (e.g. HTTPS, VPN...) between the device and another
network participant. The server certificate is an encrypted
*.p12 Server certificate
(Page 91)
Device certificate Device certificates and corresponding keys are only created
when the user has the appropriate rights.
For each created device, SINEMA RC Server creates a de-
vice certificate.
*.p12 Overview of device
management
(Page 65)
User certificate For each created user, SINEMA RC Server creates a per-
sonal certificate.
*.p12
User certificate
(Page 104)
PKI CA certificate For the logon with the PKI certificate.
The PKI CA certificate is created by an external certification
*.pem PKI CA certificate
(Page 96)
To Next Page
Loading...
