ZyXEL Communications NWA1123-ACv2 User Manual page 145

Nwa1123 series, nwa5000 series; wac5000 series; wac6000 series; wac6500 series

Hide thumbs Also See for NWA1123-ACv2:

Quick start manual

User manual (218 pages)

User manual (263 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

Table of Contents

The following table describes the labels in this screen.

Table 68 Configuration > Object > Certificate > Trusted Certificates > Edit

LABEL

DESCRIPTION

Name

This field displays the identifying name of this certificate. You can change the name. You

can use up to 31 alphanumeric and ;'~!@#$%^&()_+[]{}',.=- characters.

Certification Path

Click the Refresh button to have this read-only text box display the end entity's certificate

and a list of certification authority certificates that shows the hierarchy of certification

authorities that validate the end entity's certificate. If the issuing certification authority is one

that you have imported as a trusted certificate, it may be the only certification authority in

the list (along with the end entity's own certificate). The NWA/WAC does not trust the end

entity's certificate and displays "Not trusted" in this field if any certificate on the path has

expired or been revoked.

Refresh

Click Refresh to display the certification path.

Enable X.509v3 CRL

Select this check box to have the NWA/WAC check incoming certificates that are signed

Distribution Points

by this certificate against a Certificate Revocation List (CRL) or an OCSP server. You also

and OCSP checking

need to configure the OSCP or LDAP server details.

OCSP Server

Select this check box if the directory server uses OCSP (Online Certificate Status Protocol).

URL

Type the protocol, IP address and pathname of the OCSP server.

The NWA/WAC may need to authenticate itself in order to assess the OCSP server. Type the

certification authority).

Password

Type the password (up to 31 ASCII characters) from the entity maintaining the OCSP server

(usually a certification authority).

LDAP Server

Select this check box if the directory server uses LDAP (Lightweight Directory Access

Protocol). LDAP is a protocol over TCP that specifies how clients access directories of

certificates and lists of revoked certificates.

Address

Type the IP address (in dotted decimal notation) of the directory server.

Port

Use this field to specify the LDAP server port number. You must use the same server port

number that the directory server uses. 389 is the default server port number for LDAP.

The NWA/WAC may need to authenticate itself in order to assess the CRL directory server.

Type the login name (up to 31 ASCII characters) from the entity maintaining the server

(usually a certification authority).

Password

Type the password (up to 31 ASCII characters) from the entity maintaining the CRL directory

server (usually a certification authority).

Certificate

These read-only fields display detailed information about the certificate.

Information

Type

This field displays general information about the certificate. CA-signed means that a

Certification Authority signed the certificate. Self-signed means that the certificate's owner

signed the certificate (not a certification authority). X.509 means that this certificate was

created and signed according to the ITU-T X.509 recommendation that defines the formats

for public-key certificates.

Version

This field displays the X.509 version number.

Serial Number

This field displays the certificate's identification number given by the certification authority.

Subject

This field displays information that identifies the owner of the certificate, such as Common

Name (CN), Organizational Unit (OU), Organization (O) and Country (C).

Issuer

This field displays identifying information about the certificate's issuing certification authority,

such as Common Name, Organizational Unit, Organization and Country.

With self-signed certificates, this is the same information as in the Subject Name field.

Signature Algorithm

This field displays the type of algorithm that was used to sign the certificate. Some

certification authorities use rsa-pkcs1-sha1 (RSA public-private key encryption algorithm and

the SHA1 hash algorithm). Other certification authorities may use rsa-pkcs1-md5 (RSA

public-private key encryption algorithm and the MD5 hash algorithm).

Chapter 13 Certificates

NWA / WAC Series User's Guide

145

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Nwa5112-ni Nwa5123-acNwa5123-ac hdNwa5123-ni Nwa5301-nj Wac5302d-s ... Show all

ZyXEL Communications NWA1123-ACv2 User Manual page 145

Hide quick links:

Troubleshooting

Related Manuals for ZyXEL Communications NWA1123-ACv2

Related Products for ZyXEL Communications NWA1123-ACv2

This manual is also suitable for:

Table of Contents