Home » ZyXEL Manuals » Networking » ZyXEL NWA1100 » Manual Viewer

ZyXEL NWA1100 User Guide - Page 121

Certification Authorities, 13.5.3 Checking the Fingerprint of a Certificate on Your Computer

Get ZyXEL NWA1100 PDF manuals and user guides

Add to My Manuals
Save this manual to your list of manuals

Page 121 highlights

Chapter 13 Certificate Screen These keys work like a handwritten signature (in fact, certificates are often referred to as "digital signatures"). Only you can write your signature exactly as it should look. When people know what your signature looks like, they can verify whether something was signed by you, or by someone else. In the same way, your private key "writes" your digital signature and your public key allows people to verify whether data was signed by you, or by someone else. This process works as follows. 1 Tim wants to send a message to Jenny. He needs her to be sure that it comes from him, and that the message content has not been altered by anyone else along the way. Tim generates a public key pair (one public key and one private key). 2 Tim keeps the private key and makes the public key openly available. This means that anyone who receives a message seeming to come from Tim can read it and verify whether it is really from him or not. 3 Tim uses his private key to sign the message and sends it to Jenny. 4 Jenny receives the message and uses Tim's public key to verify it. Jenny knows that the message is from Tim, and that although other people may have been able to read the message, no-one can have altered it (because they cannot re-sign the message with Tim's private key). 5 Additionally, Jenny uses her own private key to sign a message and Tim uses Jenny's public key to verify the message. 13.5.2 Certification Authorities A Certification Authority (CA) issues certificates and guarantees the identity of each certificate owner. There are commercial certification authorities like CyberTrust or VeriSign and government certification authorities. You can use the NWA to generate certification requests that contain identifying information and public keys and then send the certification requests to a certification authority. 13.5.3 Checking the Fingerprint of a Certificate on Your Computer A certificate's fingerprints are message digests calculated using the MD5 or SHA1 algorithms. The following procedure describes how to check a certificate's fingerprint to verify that you have the actual certificate. 1 Browse to where you have the certificate saved on your computer. 2 Make sure that the certificate has a ".cer" or ".crt" file name extension. Figure 60 Certificates on Your Computer NWA1100-N User's Guide 121

Section	Page
NWA1100-N	1
About This User's Guide	3
Document Conventions	5
Safety Warnings	7
Contents Overview	9
Table of Contents	11
User’s Guide	17
Introducing the NWA	19
1.1 Introducing the NWA	19
1.2 Applications for the NWA	19
1.2.1 Access Point	20
1.2.2 Bridge / Repeater	20
1.2.3 AP + Bridge	22
1.2.4 Wireless Client	23
1.2.5 MBSSID	24
1.3 Ways to Manage the NWA	25
1.4 Configuring Your NWA’s Security Features	25
1.4.1 Control Access to Your Device	25
1.4.2 Wireless Security	25
1.5 Good Habits for Managing the NWA	26
1.6 Hardware Connections	26
1.7 LEDs	27
Introducing the Web Configurator	29
2.1 Accessing the Web Configurator	29
2.2 Resetting the NWA	30
2.2.1 Methods of Restoring Factory-Defaults	30
2.3 Navigating the Web Configurator	30
Status Screens	33
3.1 The Status Screen	33
3.1.1 System Statistics Screen	35
Tutorial	37
4.1 How to Configure the Wireless LAN	37
4.1.1 Choosing the Wireless Mode	37
4.1.2 Wireless LAN Configuration Overview	37
4.1.3 Further Reading	38
4.2 How to Configure Multiple Wireless Networks	39
4.2.1 Configure the SSID Profiles	40
4.2.2 Configure the Standard Network	42
4.2.3 Configure the VoIP Network	43
4.2.4 Configure the Guest Network	45
4.2.5 Testing the Wireless Networks	46
4.3 NWA Setup in AP and Wireless Client Modes	47
4.3.1 Scenario	47
4.3.2 Configuring the NWA in Access Point Mode	47
4.3.3 Configuring the NWA in Wireless Client Mode	50
4.3.4 MAC Filter Setup	51
4.3.5 Testing the Connection and Troubleshooting	52
Technical Reference	53
System Screens	55
5.1 Overview	55
5.2 What You Can Do in this Chapter	55
5.3 What You Need To Know	55
5.4 General Screen	57
5.4.1 Password Screen	57
5.5 Time Screen	58
5.6 Technical Reference	59
5.6.1 Pre-defined NTP Time Servers List	59
Wireless Settings Screen	60
6.1 Overview	60
6.2 What You Can Do in this Chapter	60
6.3 What You Need To Know	61
6.4 Wireless Settings Screen	62
6.4.1 Access Point Mode	63
6.4.2 Bridge / Repeater Mode	65
6.4.3 AP + Bridge Mode	69
6.4.4 Wireless Client Mode	70
6.4.5 MBSSID Mode	73
6.5 Technical Reference	75
6.5.1 WMM QoS	75
6.5.2 Spanning Tree Protocol (STP)	76
6.5.3 Additional Wireless Terms	77
SSID Screen	79
7.1 Overview	79
7.1.1 What You Can Do in this Chapter	79
7.1.2 What You Need To Know	79
7.2 The SSID Screen	80
7.2.1 Configuring SSID	81
7.3 Technical Reference	82
7.3.1 WMM QoS	82
7.3.2 Type Of Service (ToS)	83
Wireless Security Screen	85
8.1 Overview	85
8.2 What You Can Do in this Chapter	85
8.3 What You Need To Know	86
8.4 The Security Screen	87
8.4.1 Security: WEP	89
8.4.2 Security: 802.1x Only	90
8.4.3 Security: 802.1x Static 64-bit, 802.1x Static 128-bit, 802.1x Static 152- bit	92
8.4.4 Security: WPA	93
8.4.5 Security: WPA2 or WPA2-MIX	95
8.4.6 Security: WPA-PSK, WPA2-PSK, WPA2-PSK-MIX	97
8.5 Technical Reference	98
RADIUS Screen	99
9.1 Overview	99
9.2 What You Can Do in this Chapter	99
9.3 What You Need to Know	99
9.4 The RADIUS Screen	100
MAC Filter Screen	102
10.1 Overview	102
10.2 What You Can Do in this Chapter	102
10.3 What You Need To Know	102
10.4 MAC Filter Screen	103
IP Screen	105
11.1 Overview	105
11.2 What You Can Do in this Chapter	105
11.3 What You Need to Know	105
11.4 IP Screen	106
11.5 Technical Reference	107
11.5.1 WAN IP Address Assignment	107
11.5.2 Spanning Tree Protocol (STP)	107
Remote Management	109
12.1 Overview	109
12.2 What You Can Do in this Chapter	109
12.3 What You Need To Know	110
12.4 The Telnet Screen	112
12.5 The FTP Screen	112
12.6 The WWW Screen	113
12.7 The SNMP Screen	115
12.8 Technical Reference	116
12.8.1 MIB	116
12.8.2 Supported MIBs	116
12.8.3 SNMP Traps	117
Certificate Screen	119
13.1 Overview	119
13.2 What You Can Do in this Chapter	119
13.3 What You Need To Know	119
13.4 Certificate Screen	120
13.5 Technical Reference	120
13.5.1 Private-Public Certificates	120
13.5.2 Certification Authorities	121
13.5.3 Checking the Fingerprint of a Certificate on Your Computer	121
Log Screens	123
14.1 Overview	123
14.2 What You Can Do in this Chapter	123
14.3 What You Need To Know	124
14.4 View Log Screen	124
14.5 Log Settings Screen	125
Maintenance	129
15.1 Overview	129
15.2 What You Can Do in this Chapter	129
15.3 What You Need To Know	129
15.4 Association List Screen	129
15.5 Channel Usage Screen	130
15.6 F/W Upload Screen	131
15.7 Configuration File Screen	133
15.7.1 Backup Configuration	133
15.7.2 Restore Configuration	133
15.7.3 Back to Factory Defaults	135
15.8 Restart Screen	135
Troubleshooting	137
16.1 Power, Hardware Connections, and LEDs	137
16.2 NWA Access and Login	138
16.3 Internet Access	139
Product Specifications	141
Power over Ethernet (PoE) Specifications	142
Setting Up Your Computer’s IP Address	143
Pop-up Windows, JavaScript and Java Permissions	171
IP Addresses and Subnetting	183
Wireless LANs	191
Text File Based Auto Configuration	205
Open Software Announcements	207
Legal Information	237

Match case Limit results 1 per page

Chapter 13 Certificate Screen

NWA1100-N User’s Guide

121

These keys work like a handwritten signature (in fact, certificates are often referred to as “digital

signatures”). Only you can write your signature exactly as it should look. When people know what

your signature looks like, they can verify whether something was signed by you, or by someone

else. In the same way, your private key “writes” your digital signature and your public key allows

people to verify whether data was signed by you, or by someone else. This process works as

follows.

Tim wants to send a message to Jenny. He needs her to be sure that it comes from him, and that

the message content has not been altered by anyone else along the way. Tim generates a public

key pair (one public key and one private key).

Tim keeps the private key and makes the public key openly available. This means that anyone who

receives a message seeming to come from Tim can read it and verify whether it is really from him

or not.

Tim uses his private key to sign the message and sends it to Jenny.

Jenny receives the message and uses Tim’s public key to verify it. Jenny knows that the message is

from Tim, and that although other people may have been able to read the message, no-one can

have altered it (because they cannot re-sign the message with Tim’s private key).

Additionally, Jenny uses her own private key to sign a message and Tim uses Jenny’s public key to

verify the message.

13.5.2

Certification Authorities

A Certification Authority (CA) issues certificates and guarantees the identity of each certificate

owner. There are commercial certification authorities like CyberTrust or VeriSign and government

certification authorities. You can use the NWA to generate certification requests that contain

identifying information and public keys and then send the certification requests to a certification

authority.

13.5.3

Checking the Fingerprint of a Certificate on Your Computer

A certificate’s fingerprints are message digests calculated using the MD5 or SHA1 algorithms. The

following procedure describes how to check a certificate’s fingerprint to verify that you have the

actual certificate.

Browse to where you have the certificate saved on your computer.

Make sure that the certificate has a “.cer” or “.crt” file name extension.

Figure 60

Certificates on Your Computer