Trusted Ca Certificate - Draytek Vigor2925 Series User Manual

Note: You have to copy the certificate request information from above window. Next,
access your CA server and enter the page of certificate request, copy the information into
it and submit a request. A new certificate will be issued to you by the CA server. You can
save it.
D D e e l l e e t t e e
Click this button to remove the selected certificate.
4 . 1 3 . 2 T r u s t e d C
4 . 1 3 . 2 T r u s t e d C
Trusted CA certificate lists three sets of trusted CA certificate. In addition, you can build a
RootCA certificate if required.
When the local client and remote client are required to make certificate authentication (e.g.,
IPsec X.509) for data passing through SSL tunnel and avoiding the attack of MITM, a trusted
root certificate authority (Root CA) will be used to authenticate the digital certificates offered
by both ends.
However, the procedure of applying digital certificate from a trusted root certificate authority
is complicated and time-consuming. Therefore, Vigor router offers a mechanism which allows
you to generate root CA to save time and provide convenience for general user. Later, such
root CA generated by DrayTek server can perform the issuing of local certificate.
Note: Root CA can be deleted but not edited. If you want to modify the settings for a Root
CA, please delete the one and create another one by clicking Create Root CA.
C r e a t i n g a
C r e a t i n g a
Click Create Root CA to open the following page. Type in all the information that the window
request such as certifcate name (used for identifying different certificate), subject alternative
name type and relational settings for subject name. Then click GENERATE again.
A C e r t i f i c a t e
A C e r t i f i c a t e
R o o t C A
R o o t C A
385
Vigor2925 Series User's Guide