Managing Certificates; Viewing And Loading Ca Certificates - NETGEAR SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless Router Reference Manual

Wireless-n vpn firewall

Hide thumbs Also See for SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless Router:

Datasheet (4 pages)

Installation manual (2 pages)

Reference manual (150 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

Table of Contents

ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual

Managing Certificates

The firewall uses digital certificates to authenticate connecting VPN gateways or clients, and to be

authenticated by remote entities. A certificate that authenticates a server, for example, is a file that

contains:

•

A public encryption key to be used by clients for encrypting messages to the server.

•

Information identifying the operator of the server.

•

A digital signature confirming the identity of the operator of the server. Ideally, the signature is

from a trusted third party whose identity can be verified absolutely.

You can obtain a certificate from a well-known commercial Certificate Authority (CA) such as

Verisign or Thawte, or you can generate and sign your own certificate. Because a commercial CA

takes steps to verify the identity of an applicant, a certificate from a commercial CA provides a

strong assurance of the server's identity. A self-signed certificate will trigger a warning from most

browsers as it provides no protection against identity theft of the server.

Your firewall contains a self-signed certificate from NETGEAR. We recommend that you replace

this certificate prior to deploying the firewall in your network.

From the VPN > Certificates main menu/submenu, you can view the currently loaded certificates,

upload a new certificate and generate a Certificate Signing Request (CSR). Your firewall will

typically hold two types of certificates:

•

CA certificate. Each CA issues its own CA identity certificate in order to validate

communication with the CA and to verify the validity of certificates signed by the CA.

•

Self certificate. The certificate issued to you by a CA identifying your device.

Viewing and Loading CA Certificates

The Trusted Certificates (CA Certificates) table lists the certificates of CAs and contains the

following data:

•

CA Identity (Subject Name). The organization or person to whom the certificate is issued.

•

Issuer Name. The name of the CA that issued the certificate.

•

Expiry Time. The date after which the certificate becomes invalid.

8-8

Managing Users, Authentication, and Certificates

v1.0, October 2008

Table of Contents

Managing Certificates; Viewing And Loading Ca Certificates - NETGEAR SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless Router Reference Manual

Managing Certificates

Viewing and Loading CA Certificates

Troubleshooting

Related Manuals for NETGEAR SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless Router

Related Content for NETGEAR SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless Router

Table of Contents