Home » ZyXEL Manuals » Wireless » ZyXEL WAC5302D-S » Manual Viewer

ZyXEL WAC5302D-S User Guide - Page 161

Edit My Certificates, My Certificates, Return

Add to My Manuals
Save this manual to your list of manuals

Page 161 highlights

Chapter 16 Certificates Table 69 Configuration > Object > Certificate > My Certificates > Add (continued) LABEL DESCRIPTION Create a certification request and enroll for a certificate immediately online Select this to have the Zyxel Device generate a request for a certificate and apply to a certification authority for a certificate. You must have the certification authority's certificate already imported in the Trusted Certificates screen. Enrollment Protocol When you select this option, you must select the certification authority's enrollment protocol and the certification authority's certificate from the drop-down list boxes and enter the certification authority's server address. You also need to fill in the Reference Number and Key if the certification authority requires them. This field applies when you select Create a certification request and enroll for a certificate immediately online. Select the certification authority's enrollment protocol from the dropdown list box. Simple Certificate Enrollment Protocol (SCEP) is a TCP-based enrollment protocol that was developed by VeriSign and Cisco. CA Server Address Certificate Management Protocol (CMP) is a TCP-based enrollment protocol that was developed by the Public Key Infrastructure X.509 working group of the Internet Engineering Task Force (IETF) and is specified in RFC 2510. This field applies when you select Create a certification request and enroll for a certificate immediately online. Enter the IP address (or URL) of the certification authority server. CA Certificate For a URL, you can use up to 511 of the following characters. a-zA-Z0-9 This field applies when you select Create a certification request and enroll for a certificate immediately online. Select the certification authority's certificate from the CA Certificate drop-down list box. Request Authentication You must have the certification authority's certificate already imported in the Trusted Certificates screen. Click Trusted CAs to go to the Trusted Certificates screen where you can view (and manage) the Zyxel Device's list of certificates of trusted certification authorities. When you select Create a certification request and enroll for a certificate immediately online, the certification authority may want you to include a reference number and key to identify you when you send a certification request. Fill in both the Reference Number and the Key fields if your certification authority uses the CMP enrollment protocol. Just the Key field displays if your certification authority uses the SCEP enrollment protocol. For the reference number, use 0 to 99999999. OK Cancel For the key, use up to 31 of the following characters. a-zA-Z0-9 Click OK to begin certificate or certification request generation. Click Cancel to quit and return to the My Certificates screen. If you configured the Add My Certificates screen to have the Zyxel Device enroll a certificate and the certificate enrollment is not successful, you see a screen with a Return button that takes you back to the Add My Certificates screen. Click Return and check your information in the Add My Certificates screen. Make sure that the certification authority information is correct and that your Internet connection is working properly if you want the Zyxel Device to enroll a certificate online. 16.2.2 Edit My Certificates Click Configuration > Object > Certificate > My Certificates and then the Edit icon to open the My Certificate Edit screen. You can use this screen to view in-depth certificate information and change the certificate's name. NWA/WAC/WAX Series User's Guide 161

Section	Page
NWA/WAC/WAX Series	1
Document Conventions	3
Contents Overview	4
Table of Contents	5
Introduction	13
1.1 Overview	13
1.2 Zyxel Device Roles	13
1.2.1 Root AP	14
1.2.2 Wireless Repeater	14
1.2.3 Radio Frequency (RF) Monitor	15
1.3 Sample Feature Applications	17
1.3.1 MBSSID	17
1.3.2 Dual-Radio	18
1.4 Zyxel Device Product Feature Comparison	19
AP Management	24
2.1 Management Mode	24
2.1.1 Standalone	24
2.1.2 Nebula Control Center	24
2.1.3 AP Controller (AC)	26
2.2 Switching Management Modes	26
2.3 Zyxel One Network (ZON) Utility	27
2.3.1 Requirements	27
2.3.2 Run the ZON Utility	28
2.4 Ways to Access the Zyxel Device	31
2.5 Good Habits for Managing the Zyxel Device	32
Hardware	33
3.1 Grounding (WAC6552D-S and WAC6553D-E)	33
3.2 Zyxel Device Models With Single LEDs	34
3.2.1 NWA1123-ACv2	34
3.2.2 WAC6303D-S and NWA5123-AC HD	36
3.2.3 NWA1123-AC HD	37
3.2.4 NWA5123-AC	39
3.2.5 NWA110AX, WAX510D and WAX650S	40
3.3 Zyxel Device Models With Multiple LEDs	42
3.3.1 NWA1123-AC PRO	42
3.3.2 NWA1302-AC	44
3.3.3 WAC6502D-E, WAC6502D-S, and WAC6503D-S	46
3.3.4 WAC6103D-I	48
3.3.5 WAC5302D-S	50
The Web Configurator	53
4.1 Overview	53
4.2 Accessing the Web Configurator	53
4.3 Navigating the Web Configurator	55
4.3.1 Title Bar	56
4.3.2 Navigation Panel	58
4.3.3 Standalone Mode Navigation Panel Menus	58
4.3.4 Cloud Mode Navigation Panel Menus	60
4.3.5 Tables and Lists	61
Standalone Configuration	64
Standalone Configuration	65
5.1 Overview	65
5.2 Starting and Stopping the Zyxel Device	65
Dashboard	67
6.1 Overview	67
6.1.1 CPU Usage	70
6.1.2 Memory Usage	71
Setup Wizard	73
7.1 Accessing the Wizard	73
7.2 Using the Wizard	73
7.2.1 Step 1 Time Settings	73
7.2.2 Step 2 Password and Uplink Connection	74
7.2.3 Step 3 Radio	75
7.2.4 Step 4 SSID	76
7.2.5 Summary	78
Monitor	79
8.1 Overview	79
8.1.1 What You Can Do in this Chapter	79
8.2 What You Need to Know	79
8.3 Network Status	80
8.3.1 Port Statistics Graph	81
8.4 Radio List	82
8.4.1 AP Mode Radio Information	84
8.5 Station List	86
8.6 WDS Link Info	87
8.7 Detected Device	88
8.8 View Log	91
Network	94
9.1 Overview	94
9.1.1 AP Controller Management	94
9.1.2 What You Can Do in this Chapter	96
9.2 IP Setting	97
9.3 VLAN	98
9.4 Storm Control	101
9.5 AC (AP Controller) Discovery	102
9.6 NCC Discovery	103
Wireless	105
10.1 Overview	105
10.1.1 What You Can Do in this Chapter	105
10.1.2 What You Need to Know	106
10.2 AP Management	106
10.3 Rogue AP	109
10.3.1 Add/Edit Rogue/Friendly List	113
10.4 Load Balancing	114
10.4.1 Disassociating and Delaying Connections	115
10.5 DCS	116
10.6 Technical Reference	117
Bluetooth	120
11.1 Overview	120
11.1.1 What You Need To Know	120
11.2 Bluetooth Advertising Settings	121
11.2.1 Edit Advertising Settings	121
User	123
12.1 Overview	123
12.1.1 What You Can Do in this Chapter	123
12.1.2 What You Need To Know	123
12.2 User Summary	124
12.2.1 Add/Edit User	124
12.3 Setting	126
12.3.1 Edit User Authentication Timeout Settings	128
AP Profile	130
13.1 Overview	130
13.1.1 What You Can Do in this Chapter	130
13.1.2 What You Need To Know	130
13.2 Radio	131
13.2.1 Add/Edit Radio Profile	132
13.3 SSID	137
13.3.1 SSID List	137
13.3.2 Add/Edit SSID Profile	139
13.4 Security List	141
13.4.1 Add/Edit Security Profile	142
13.5 MAC Filter List	146
13.5.1 Add/Edit MAC Filter Profile	146
13.6 Layer-2 Isolation List	147
13.6.1 Add/Edit Layer-2 Isolation Profile	149
MON Profile	150
14.1 Overview	150
14.1.1 What You Can Do in this Chapter	150
14.2 MON Profile	150
14.2.1 Add/Edit MON Profile	151
WDS Profile	153
15.1 Overview	153
15.1.1 What You Can Do in this Chapter	153
15.2 WDS Profile	153
15.2.1 Add/Edit WDS Profile	154
Certificates	155
16.1 Overview	155
16.1.1 What You Can Do in this Chapter	155
16.1.2 What You Need to Know	155
16.1.3 Verifying a Certificate	157
16.2 My Certificates	158
16.2.1 Add My Certificates	159
16.2.2 Edit My Certificates	161
16.2.3 Import Certificates	164
16.3 Trusted Certificates	165
16.3.1 Edit Trusted Certificates	166
16.3.2 Import Trusted Certificates	169
16.4 Technical Reference	170
System	171
17.1 Overview	171
17.1.1 What You Can Do in this Chapter	171
17.2 Host Name	171
17.3 Power Mode	172
17.4 Date and Time	173
17.4.1 Pre-defined NTP Time Servers List	175
17.4.2 Time Server Synchronization	175
17.5 WWW Overview	176
17.5.1 Service Access Limitations	176
17.5.2 System Timeout	176
17.5.3 HTTPS	177
17.5.4 Configuring WWW Service Control	177
17.5.5 HTTPS Example	178
17.6 SSH	184
17.6.1 How SSH Works	185
17.6.2 SSH Implementation on the Zyxel Device	186
17.6.3 Requirements for Using SSH	186
17.6.4 Configuring SSH	186
17.6.5 Examples of Secure Telnet Using SSH	187
17.7 Telnet	188
17.8 FTP	189
17.9 SNMP	190
17.9.1 Supported MIBs	191
17.9.2 SNMP Traps	191
17.9.3 Configuring SNMP	191
17.9.4 Adding or Editing an SNMPv3 User Profile	192
Log and Report	194
18.1 Overview	194
18.1.1 What You Can Do In this Chapter	194
18.2 Email Daily Report	194
18.3 Log Setting	196
18.3.1 Log Setting Screen	197
18.3.2 Edit System Log Settings	198
18.3.3 Edit Remote Server	202
18.3.4 Active Log Summary	203
File Manager	206
19.1 Overview	206
19.1.1 What You Can Do in this Chapter	206
19.1.2 What you Need to Know	206
19.2 Configuration File	207
19.2.1 Example of Configuration File Download Using FTP	211
19.3 Firmware Package	212
19.3.1 Example of Firmware Upload Using FTP	213
19.4 Shell Script	214
Diagnostics	217
20.1 Overview	217
20.1.1 What You Can Do in this Chapter	217
20.2 Diagnostics	217
LEDs	219
21.1 Overview	219
21.1.1 What You Can Do in this Chapter	219
21.2 Suppression Screen	219
21.3 Locator Screen	220
Antenna Switch	222
22.1 Overview	222
22.1.1 What You Need To Know	222
22.2 Antenna Switch Screen	222
Reboot	224
23.1 Overview	224
23.1.1 What You Need To Know	224
23.2 Reboot	224
Shutdown	225
24.1 Overview	225
24.1.1 What You Need To Know	225
24.2 Shutdown	225
Local Configuration in Cloud Mode	226
Cloud Mode	227
25.1 Overview	227
25.2 Cloud Mode Web Configurator Screens	227
Dashboard	229
Network	231
27.1 Overview	231
27.1.1 What You Can Do in this Chapter	231
27.2 IP Setting	231
27.3 VLAN	233
Maintenance	234
28.1 Overview	234
28.1.1 What You Can Do in this Chapter	234
28.2 Shell Script	234
28.3 Diagnostics	235
28.4 View Log	236
Appendices and Troubleshooting	239
Troubleshooting	240
29.1 Overview	240
29.2 Power, Hardware Connections, and LED	240
29.3 Zyxel Device Management, Access, and Login	241
29.4 Internet Access	245
29.5 WiFi Network	246
29.6 Resetting the Zyxel Device	247
29.7 Getting More Troubleshooting Help	248
Importing Certificates	249
IPv6	273
Customer Support	281
Legal Information	287

Match case Limit results 1 per page

Chapter 16 Certificates

NWA/WAC/WAX Series User’s Guide

161

If you configured the

Add

My Certificates

screen to have the Zyxel Device enroll a certificate and the

certificate enrollment is not successful, you see a screen with a

Return

button that takes you back to the

Add

My Certificates

screen. Click

Return

and check your information in the

Add

My Certificates

screen.

Make sure that the certification authority information is correct and that your Internet connection is

working properly if you want the Zyxel Device to enroll a certificate online.

16.2.2

Edit My Certificates

Click

Configuration > Object > Certificate > My Certificates

and then the

Edit

icon

to open the

Certificate Edit

screen. You can use this screen to view in-depth certificate information and change the

certificate’s name.

Create a certification

request and enroll for

a certificate

immediately online

Select this to have the Zyxel Device generate a request for a certificate and apply to a

certification authority for a certificate.

You must have the certification authority’s certificate already imported in the

Trusted

Certificates

screen.

When you select this option, you must select the certification authority’s enrollment

protocol and the certification authority’s certificate from the drop-down list boxes and

enter the certification authority’s server address. You also need to fill in the

Reference

Number

and

Key

if the certification authority requires them.

Enrollment Protocol

This field applies when you select

Create a certification request and enroll for a certificate

immediately online

. Select the certification authority’s enrollment protocol from the drop-

down list box.

Simple Certificate Enrollment Protocol (SCEP)

is a TCP-based enrollment protocol that was

developed by VeriSign and Cisco.

Certificate Management Protocol (CMP)

is a TCP-based enrollment protocol that was

developed by the Public Key Infrastructure X.509 working group of the Internet

Engineering Task Force (IETF) and is specified in RFC 2510.

CA Server Address

This field applies when you select

Create a certification request and enroll for a certificate

immediately online

. Enter the IP address (or URL) of the certification authority server.

For a URL, you can use up to 511 of the following characters. a-zA-Z0-9'()+,/:.=?;!*#@$_%-

CA Certificate

This field applies when you select

Create a certification request and enroll for a certificate

immediately online

. Select the certification authority’s certificate from the

CA Certificate

drop-down list box.

You must have the certification authority’s certificate already imported in the

Trusted

Certificates

screen. Click

Trusted CAs

to go to the

Trusted Certificates

screen where you

can view (and manage) the Zyxel Device's list of certificates of trusted certification

authorities.

Request

Authentication

When you select

Create a certification request and enroll for a certificate immediately

online

, the certification authority may want you to include a reference number and key to

identify you when you send a certification request.

Fill in both the

Reference Number

and the

Key

fields if your certification authority uses the

CMP enrollment protocol. Just the

Key

field displays if your certification authority uses the

SCEP enrollment protocol.

For the reference number, use 0 to 99999999.

For the key, use up to 31 of the following characters. a-zA-Z0-9;|`~!@#$%^&*()_+\{}':,./

<>=-

Click

to begin certificate or certification request generation.

Cancel

Click

Cancel

to quit and return to the

My Certificates

screen.

Table 69

Configuration > Object > Certificate > My Certificates > Add (continued)

LABEL

DESCRIPTION