Verifying A Certificate - ZyXEL Communications ISG50-ISDN User Manual

• Binary PKCS#12: This is a format for transferring public key and private key certificates.The
private key in a PKCS #12 file is within a password-encrypted envelope. The file's password is not
connected to your certificate's public or private passwords. Exporting a PKCS #12 file creates this
and you must provide it to decrypt the contents when you import the file into the ISG50.
Note: Be careful not to convert a binary file to text during the transfer process. It is easy
for this to occur since many programs use text files by default.
Finding Out More
• See Section 6.7 on page 103
• See Section 50.4 on page 659

50.1.3 Verifying a Certificate

Before you import a trusted certificate into the ISG50, you should verify that you have the correct
certificate. You can do this using the certificate's fingerprint. A certificate's fingerprint is a message
digest calculated using the MD5 or SHA1 algorithm. The following procedure describes how to check
a certificate's fingerprint to verify that you have the actual certificate.
Browse to where you have the certificate saved on your computer.
1
Make sure that the certificate has a ".cer" or ".crt" file name extension.
2
Figure 430 Remote Host Certificates
ISG50 User's Guide
for related information on these screens.
for certificate background information.
Chapter 50 Certificates
645