User`s guide
418
Administration > X.509 Certificate Management
The X.509 Certificate Management pages are for loading and managing X.509 certificates
and public/private host key pairs that are public key infrastructure (PKI) based security.
There are separate pages of settings for the certificate databases and key management.
Administration > X.509 Certificate Management > Certificate Authorities
(CAs)
A certificate authority (CA) is a trusted third party which issues digital certificates for use by
other parties.
Digital certificates issued by the CA contain a public key. The certificate also contains
information about the individual or organization to which the public key belongs.
A CA verifies digital certificate applicants' credentials. The CA certificate allows verification
of digital certificates and the information contained therein, issued by that CA.
Installed Certificate Authority Certificates
This table lists the current CA certificates that have been installed onto the router. It is
possible to view the contents of each certificate using the “View” button.
Upload CA Certificates
CA Certificates can be uploaded from a host PC onto the router using the “Browse” and
“Upload” buttons.
Obtain CA certificates from a SCEP Server
The Simple Certificate Enrolment Protocol (SCEP) allows the user to request and enrol CA
certificates from a CA server.
The CA certificate files will automatically stored with the name CA<n>.pem where n
increments with each certificate.
SCEP Server IP address
The IP address of the SCEP server / CA server.
Port
The port on which SCEP server is listening. If the port is 0, the default port of 80 will be
used.
Path
The path on the server to the SCEP application. The path can either be entered manually if
known or select from cgi-bin or Microsoft SCEP from the drop-down list.