D-Link DSR-1000AC User Manual - Page 119
Self Certificate Requests
![]() |
View all D-Link DSR-1000AC manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 119 highlights
Section 7 - VPN Self Certificate Requests To request a self certificate to be signed by a CA, you can generate a Certificate Signing Request from the router by entering identification parameters and passing it along to the CA for signing. Once signed, the CA's Trusted Certificate and signed certificate from the CA are uploaded to activate the self -certificate validating the identity of this gateway. The self certificate is then used in IPsec and SSL connections with peers to validate the gateway's authenticity. To generate a certificate signing request: 1. Click VPN > IPSec VPN > Certificates > Self Certificate Requests. 2. Click New Self Certificate. 3. Complete the fields in the table below and click Save. Field Name Subject Hash Algorithm Signature Key Length Application Type IP Address Domain Name Email Address Save Description Enter a name (identifier) for the certificate. This field will populate the CN (Common Name) entry of the generated certificate. Subject names are usually defined in the following format: CN=, OU=, O=, L=, ST=, C=. For example: CN=router1, OU=my_company, O=mydept, L=SFO, C=US. Select the algorithm from the drop-down menu. Select either MD5 or SHA-1. Select the signature key length from the drop-down menu. Select either 512, 1024, or 2048 Select the application type from the drop-down menu. Select either HTTPS or IPSec. Enter an IP address (optional). Enter a domain name (optional). Enter your email address. Click Save to save and activate your settings. D-Link DSR-Series User Manual 106
![](/manual_guide/products/dlink-dsr1000ac-user-manual-3476918/119.png)