LEGRAND Server Technology PRO3X User Manual page 167

Field/setting Description
Client certificate,
This field appears when 'EAP', 'PEAP' and 'TLS' are all
Client private key,
selected.
Client private key
password
PEM encoded X.509 certificate and PEM encoded private key are
required for certification-based authentication methods. Private
key password is optional.
• •
Private keys of PKCS#1 and PKCS#8 formats are supported.
• •
Client Private Key Password should be entered only when
your private key is encrypted with a password.
• • To view the uploaded certificate, click Show Client Certificate.
• •
To remove the uploaded certificate and private key, click
'Clear Key/Certificate selection'.
CA certificate
This field appears when 'EAP' is selected.
A third-party CA certificate may or may not be needed. If needed,
follow the steps below.
RADIUS
authentication
This field appears when 'EAP' is selected.
server name
Type the name of the RADIUS server if it is present in the TLS
certificate.
• •
The name must match the fully qualified domain name
(FQDN) of the host shown in the certificate.
• •
Available settings for the CA Certificate:
If the required certificate file is a chain of certificates, and you are not sure about the requirements of a
certificate chain, see TLS Certificate Chain.
Field/setting Description
Enable Select this checkbox for the PRO3X to verify the validity of the TLS
verification of TLS certificate that will be installed.
certificate chain
• • For example, the certificate's validity period against the
system time is checked.
Browse button Click Browse to import a certificate file. Then you can:
• • Click Show to view the certificate's content.
• •
Click Remove to delete the installed certificate if it is
inappropriate.
167