D-Link DSR-1000AC User Manual - Page 119

Self Certificate Requests

Get D-Link DSR-1000AC PDF manuals and user guides View all D-Link DSR-1000AC manuals
Add to My Manuals
Save this manual to your list of manuals

Page 119 highlights

Section 7 - VPN Self Certificate Requests To request a self certificate to be signed by a CA, you can generate a Certificate Signing Request from the router by entering identification parameters and passing it along to the CA for signing. Once signed, the CA's Trusted Certificate and signed certificate from the CA are uploaded to activate the self -certificate validating the identity of this gateway. The self certificate is then used in IPsec and SSL connections with peers to validate the gateway's authenticity. To generate a certificate signing request: 1. Click VPN > IPSec VPN > Certificates > Self Certificate Requests. 2. Click New Self Certificate. 3. Complete the fields in the table below and click Save. Field Name Subject Hash Algorithm Signature Key Length Application Type IP Address Domain Name Email Address Save Description Enter a name (identifier) for the certificate. This field will populate the CN (Common Name) entry of the generated certificate. Subject names are usually defined in the following format: CN=, OU=, O=, L=, ST=, C=. For example: CN=router1, OU=my_company, O=mydept, L=SFO, C=US. Select the algorithm from the drop-down menu. Select either MD5 or SHA-1. Select the signature key length from the drop-down menu. Select either 512, 1024, or 2048 Select the application type from the drop-down menu. Select either HTTPS or IPSec. Enter an IP address (optional). Enter a domain name (optional). Enter your email address. Click Save to save and activate your settings. D-Link DSR-Series User Manual 106

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296
  • 297
  • 298
  • 299
  • 300
  • 301
  • 302
  • 303
  • 304
  • 305
  • 306
  • 307
  • 308
  • 309
  • 310
  • 311
  • 312
  • 313
  • 314
  • 315
  • 316
  • 317
  • 318
  • 319
  • 320
  • 321
  • 322
  • 323
  • 324
  • 325
  • 326
  • 327
  • 328
  • 329
  • 330
  • 331
  • 332
  • 333
  • 334
  • 335
  • 336
  • 337
  • 338
  • 339
  • 340
  • 341
  • 342
  • 343
  • 344
  • 345
  • 346
  • 347
  • 348
D-Link DSR-Series User Manual
106
Section 7 - VPN
Self Certificate Requests
To request a self certificate to be signed by a CA, you can generate a Certificate Signing Request from the router
by entering identification parameters and passing it along to the CA for signing. Once signed, the CA’s Trusted
Certificate and signed certificate from the CA are uploaded to activate the self -certificate validating the identity
of this gateway. The self certificate is then used in IPsec and SSL connections with peers to validate the gateway’s
authenticity.
To generate a certificate signing request:
1. Click
VPN
>
IPSec VPN
>
Certificates
>
Self Certificate Requests
.
2. Click
New Self Certificate
.
3. Complete the fields in the table below and click
Save
.
Field
Description
Name
Enter a name (identifier) for the certificate.
Subject
This field will populate the CN (Common Name) entry of the generated certificate. Subject names are
usually defined in the following format: CN=<device name>, OU=<department>, O=<organization>,
L=<city>, ST=<state>, C=<country>. For example: CN=router1, OU=my_company, O=mydept, L=SFO,
C=US.
Hash Algorithm
Select the algorithm from the drop-down menu. Select either
MD5
or
SHA-1
.
Signature Key Length
Select the signature key length from the drop-down menu. Select either
512
,
1024
, or
2048
Application Type
Select the application type from the drop-down menu. Select either
HTTPS
or
IPSec
.
IP Address
Enter an IP address (optional).
Domain Name
Enter a domain name (optional).
Email Address
Enter your email address.
Save
Click
Save
to save and activate your settings.