Self Certificate Requests - D-Link DSR-150 User Manual

Section 7 - VPN
To request a self certificate to be signed by a CA, you can generate a Certificate Signing Request from the router
by entering identification parameters and passing it along to the CA for signing. Once signed, the CA's Trusted
Certificate and signed certificate from the CA are uploaded to activate the self -certificate validating the identity
of this gateway. The self certificate is then used in IPsec and SSL connections with peers to validate the gateway's
authenticity.
To generate a certificate signing request:
1. Click VPN > IPSec VPN > Certificates > Self Certificate Requests.
2. Click New Self Certificate.
3. Complete the fields in the table below and click Save.
Field
Name
Subject
Hash Algorithm
Signature Key Length
Application Type
IP Address
Domain Name
Email Address
Save
D-Link DSR-Series User Manual

Self Certificate Requests

Enter a name (identifier) for the certificate.
This field will populate the CN (Common Name) entry of the generated certificate. Subject names are
usually defined in the following format: CN=<device name>, OU=<department>, O=<organization>,
L=<city>, ST=<state>, C=<country>. For example: CN=router1, OU=my_company, O=mydept, L=SFO,
C=US.
Select the algorithm from the drop-down menu. Select any one from the following: MD5, SHA-1,
SHA256, SHA384, and SHA512.
Select the signature key length from the drop-down menu. Select either 512, 1024, or 2048
Select the application type from the drop-down menu. Select either HTTPS or IPSec.
Enter an IP address (optional).
Enter a domain name (optional).
Enter your email address.
Click Save to save and activate your settings.
Description
117