Symantec ALTIRIS OUT OF BAND MANAGEMENT COMPONENT 7.0 SP3 - V1.0 Manual page 34
Hide thumbs
Also See for ALTIRIS OUT OF BAND MANAGEMENT COMPONENT 7.0 SP3 - V1.0:
- Manual (29 pages) ,
- Implementation manual (192 pages)
Table of Contents
Advertisement
34
About Out of Band Management Component pages
Configuration Profiles page
Options on the TLS tab (continued)
Table 2-8
Option
Description
Server Certificate
Select the certification authority (CA) that you want to use to generate
server certificates for the Intel AMT devices that are associated with
the profile.
See
Note:
a single profile. These include the Server certificate that is required
for TLS and any client certificates that are required for 802.1x profiles
or for NAC posture signing. In a normal installation, a single client
certificate would be purchased for all applications in the facility. If
a profile requires more than three certificates, setup of an Intel AMT
device that is based on this profile fails.
Trusted
These are the issuers of the client certificates that the Intel AMT
Certificates
device recognizes as authentic. These certificates are stored in the
database and then sent to the Intel AMT device during configuration.
Intel AMT can accept up to four trusted root certificates, so no more
than four should be added to a profile.
Click the Add symbol and, in the Select Trusted Root Certificate
dialog box, select the certification authority (CA) that you configured
to issue certificates for TLS with Mutual.
You can also import the trusted root CA certificate from a file.
For more information, see the Out of Band Management Component
Implementation Guide.
CRL
(Optional)
The Certificate Revocation List (CRL) is a list of entries that indicate
which certificates have been revoked. The CRL contains certification
authority URLs and the serial numbers of revoked certificates. This
is an optional feature of TLS Mutual Authentication.
Click the Manage CRL symbol to define a CRL.
FQDN Suffixes
The Fully Qualified Domain Name (FQDN) suffixes for mutual
authentication.
The Intel AMT device validates that any client certificates that Intel
SCS or Altiris solutions use have one of the listed suffixes in the
certificate subject.
Type the FQDN suffix of the Notification Server computer: for
example, type yourenterprise.com. If you want to type more than
one suffix, use a comma as a delimiter.
"Add Certificate Generation Properties dialog box"
Only three server and client certificates can be associated with
on page 24.
Advertisement
Table of Contents
Related Manuals for Symantec ALTIRIS OUT OF BAND MANAGEMENT COMPONENT 7.0 SP3 - V1.0
Related Products for Symantec ALTIRIS OUT OF BAND MANAGEMENT COMPONENT 7.0 SP3 - V1.0
- SYMANTEC ALTIRIS CLIENT MANAGEMENT SUITE 7.0 SP2 - V1.0
- SYMANTEC CLIENT MANAGEMENT SUITE 7.0 SP2
- SYMANTEC REAL-TIME CONSOLE INFRASTRUCTURE 7.0 SP3
- SYMANTEC MONITOR PACKS FOR SERVERS 7.0 - SP2 S
- SYMANTEC ALTIRIS INVENTORY 7.0 SP2 - FOR NETWORK DEVICES V1.0
- SYMANTEC SOFTWARE MANAGER 7.0 SP2 - REFERENCE FOR WISE INSTALLATION STUDIO V1.0
- Symantec ALTIRIS REAL-TIME SYSTEM MANAGER 7.0 SP2 MR1
- SYMANTEC ALTIRIS ASSET MANAGEMENT SUITE 7.0 - V1.0
- SYMANTEC CMDB SOLUTION 7.0
- SYMANTEC ALTIRIS IT MANAGEMENT SUITE 7.0 MR1 - S V1.0
- SYMANTEC ALTIRIS IT MANAGEMENT SUITE 7.0 MR2 - S
- Symantec WISESCRIPT EDITOR 7.0.2
- SYMANTEC ALTIRIS DEPLOYMENT SOLUTION 7.1 - V1
- SYMANTEC DEPLOYMENT SOLUTION 7.1
- SYMANTEC GHOST IMAGING FOUNDATION 7.1 - V1.0
- Symantec 7120
Need help?
Do you have a question about the ALTIRIS OUT OF BAND MANAGEMENT COMPONENT 7.0 SP3 - V1.0 and is the answer not in the manual?
Questions and answers