HP 7102dl - ProCurve Secure Router Configuration Manual page 550

Procurve secure router 7000dl series - advanced management and configuration guide
Hide thumbs Also See for 7102dl - ProCurve Secure Router:
Table of Contents

Advertisement

Virtual Private Networks
Configuring a VPN Using IPSec
10-56
RSA is the most commonly used algorithm and is extremely secure.
Your CA will tell you which standard it uses. You should configure this
standard in the IKE attribute policy. (See the discussion of authentication
methods in "IKE Phase 1" on page 10-8.)
CA Servers. You use a CA server to obtain certificates from a CA. If the CA
server that you select supports Simple Certificate Enrollment Protocol
(SCEP), the ProCurve Secure Router can download and import certificates
from it automatically.
Otherwise, you will have to navigate the server's Web site to request and
download certificates. You then paste these into the ProCurve Secure Router's
CLI.
You will need to use the server to obtain at least two certificates:
a CA certificate
a personal, or self, certificate
CA Certificate. The router uses the CA certificate to decrypt and check the
CA's digital signature. A CA includes its signature in all the certificates that it
issues, attesting that the identification information is accurate for the host
holding the certificate. The router's system must include a CA certificate for
each CA from which it receives a certificate and from which it accepts
certificates.
The CA certificate can be either a root certificate, which a CA issues to itself,
or a subordinate certificate, which a CA issues to a subordinate CA.
Self Certificate. The self certificate is the certificate the router uses to
authenticate its own identity. It includes:
the router's identification information
the router's public key
the CA's signature
When the router sends a certificate to a peer, it adds its own signature by
encrypting the certificate with its private key.

Hide quick links:

Advertisement

Table of Contents
loading

This manual is also suitable for:

Procurve secure router 7203dl j8753a j8753a

Table of Contents