Manualshelf

Specifications

ManualsBrandsBarracuda Networks ManualsComputer equipmentSSL VPN
31323334353637383940
36
SSL Certificates
An SSL certificate can be configured for the purpose of encrypted communication between server and
client. This page enables the management of this and other types of supported certificates. This chapter
details the certificate related actions available to a user from importing new certificates and purchasing
certificates.
SSL Certificates Interface
The SSL (Secure Sockets Layer) protocol is the standard method used in securing e-commerce
transactions. SSL defines two methods for securing sensitive information during an SSL session they
are encryption and authentication.
The page displays certificates related to each keystore type. As can be seen above, the keystore pull-
down displays three different certificate types:
SSL VPN Server Certificate: Certificates installed by the Barracuda SSL VPN for SSL
encryption of VPN sessions. Browsers connecting to the appliance will receive this as proof
of authenticity.
Trusted Server Certificates: These certificates are usually provided beforehand by trusted
vendors whose Web server the appliance may be expected to connect to at some point. The
certificate contains a public key to allow the client and server to secure the communication.
Client Certificate Authentication: This certificate is used by the client to authenticate itself
with the appliance. The appliance creates this certificate containing a private key which is
imported into the browser to authenticate itself with the server.
Server Authentication: This certificate is used when the appliance, acting as a client,
connects to another HTTPS server which requires authentication by the client through the use
of a private key.
Action Icons
The action icons against each certificate perform functions on the associated certificate:
Export certificate
Export key
Certificate Actions
The action panel on the right of the page shows the actions that can be performed:
Import Certificate or Key: Any further additions to the certificate database are imported
from this option.
Download CSR: Downloads the Certificate Signing Request for the server SSL certificate
currently in use in order to be sent to a CA for signing.
Create CA: Create a new authority