NETGEAR STM150 Appliance Reference Manual page 90

ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual
When a security alert is generated, the user can decide whether or not to trust the host.
Figure 3-14
You can obtain a digital certificate from a well-known commercial certificate authority (CA) such
as Verisign or Thawte. Because a commercial CA takes steps to verify the identity of an applicant,
a digital certificate from a commercial CA provides a strong assurance of the server's identity.
The STM contains a self-signed digital certificate from NETGEAR. This certificate can be
downloaded from the STM login screen or from the Certificate Management screen for browser
import. However, NETGEAR recommends that you replace this digital certificate with a digital
certificate from a well-known commercial CA prior to deploying the STM in your network.
The STM's Certificate Management screen lets you to view the currently loaded digital certificate
for HTTPS scans, upload a new digital certificate, manage the trusted CA authorities list, and
manage the untrusted certificates list.
To display the Certificate Management screen, select Web Security> Certificate Management
from the menu. Because of the size of this screen, and because of the way the information is
presented, the Certificate Management screen is divided and presented in this manual in three
figures (Figure 3-15 on page 3-27, Figure 3-16 on page 3-29, and Figure 3-17 on page 3-30).
3-26 Performing Network and System Management
v1.0, September 2009