User`s guide
®
USER’S GUIDE
AUTOMATIC TRANSFER SWITCH
128
Method 2: Use the APC Security Wizard to create a CA certificate and a
server certificate.
Use the APC Security Wizard to create two digital
certificates:
•A CA root certificate (Certificate Authority root certificate) that the APC
Security Wizard uses to sign all server certificates and which you then
install into the certificate store (cache) of the browser of each user who
needs access to the Automatic Transfer Switch.
•A server certificate that you upload to the Automatic Transfer Switch.
When the APC Security Wizard creates a server certificate, it uses the
CA root certificate to sign the server certificate.
The Web browser authenticates the Automatic Transfer Switch sending or
requesting data:
• To identify the Automatic Transfer Switch, the browser uses the
common name (IP address or DNS name of the Automatic Transfer
Switch) that was specified in the server certificate’s distinguished name
when the certificate was created.
• To confirm that the server certificate is signed by a “trusted” signing
authority, the browser compares the signature of the server certificate
with the signature in the root certificate cached in the browser. An
expiration date confirms whether the server certificate is current.