ZyXEL WAC500 User Guide - Page 181
Configuration > Object > Certificate > My Certificates > Add, Host IP Address, Host Domain
View all ZyXEL WAC500 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 181 highlights
Chapter 15 Certificates The following table describes the labels in this screen. Table 55 Configuration > Object > Certificate > My Certificates > Add LABEL DESCRIPTION Name Subject Information Type a name to identify this certificate. You can use up to 31 alphanumeric and characters. Use these fields to record information that identifies the owner of the certificate. You do not have to fill in every field, although you must specify a Host IP Address, Host Domain Name, or E-Mail. The certification authority may add fields (such as a serial number) to the subject information when it issues a certificate. It is recommended that each certificate have unique subject information. Select a radio button to identify the certificate's owner by IP address, domain name or email address. Type the IP address (in dotted decimal notation), domain name or e-mail address in the field provided. The domain name or e-mail address is for identification purposes only and can be any string. A domain name can be up to 255 characters. You can use alphanumeric characters, the hyphen and periods. Organizational Unit Organization Town (City) State (Province) Country Key Type An e-mail address can be up to 63 characters. You can use alphanumeric characters, the hyphen, the @ symbol, periods and the underscore. Identify the organizational unit or department to which the certificate owner belongs. You can use up to 31 characters. You can use alphanumeric characters, the hyphen and the underscore. Identify the company or group to which the certificate owner belongs. You can use up to 31 characters. You can use alphanumeric characters, the hyphen and the underscore. Identify the town or city where the certificate owner is located. You can use up to 31 characters. You can use alphanumeric characters, the hyphen and the underscore. Identify the state or province where the certificate owner is located. You can use up to 31 characters. You can use alphanumeric characters, the hyphen and the underscore. Identify the nation where the certificate owner is located. You can use up to 31 characters. You can use alphanumeric characters, the hyphen and the underscore. The Zyxel Device uses the RSA (Rivest, Shamir and Adleman) public-key encryption algorithm. SHA1 (Secure Hash Algorithm) and SHA2 are hash algorithms used to authenticate packet data. SHA2-256 or SHA2-512 are part of the SHA2 set of cryptographic functions and they are considered even more secure than SHA1. Key Length Extended Key Usage Select a key type from RSA-SHA256 and RSA-SHA512. Select a number from the drop-down list box to determine how many bits the key should use (1024 to 2048). The longer the key, the more secure it is. A longer key also uses more PKI storage space. Select Server Authentication to allow a web server to send clients the certificate to authenticate itself. Create a self-signed certificate Create a certification request and save it locally for later manual enrollment Select Client Authentication to use the certificate's key to authenticate clients to the secure gateway. These radio buttons deal with how and when the certificate is to be generated. Select this to have the Zyxel Device generate the certificate and act as the Certification Authority (CA) itself. This way you do not need to apply to a certification authority for certificates. Select this to have the Zyxel Device generate and store a request for a certificate. Use the My Certificate Edit screen to view the certification request and copy it to send to the certification authority. Copy the certification request from the My Certificate Edit screen and then send it to the certification authority. NWA/WAC/WAX Series User's Guide 127