Operation Manual
VigorAP 902 User’s Guide
218
3
3
.
.
1
1
3
3
.
.
2
2
C
C
e
e
r
r
t
t
i
i
f
f
i
i
c
c
a
a
t
t
e
e
M
M
a
a
n
n
a
a
g
g
e
e
m
m
e
e
n
n
t
t
When the local client and remote server are required to make certificate authentication (e.g.,
Radius EAP-TLS authentication) for wireless connection and avoiding the attack of MITM,
a trusted root certificate authority (Root CA) will be used to authenticate the digital
certificates offered by both ends.
However, the procedure of applying digital certificate from a trusted root certificate authority
is complicated and time-consuming. Therefore, Vigor AP offers a mechanism which allows
you to generate root CA to save time and provide convenience for general user. Later, such
root CA generated by DrayTek server can perform the issuing of local certificate.
Root CA can be deleted but not edited. If you want to modify the settings for a Root CA,
please delete the one and create another one by clicking Create Root CA.
Click Create Root CA to open the following page. Type or choose all the information that
the window request such as subject name, key type, key size and so on.
Available settings are explained as follows:
Item Description
Subject Name
Type the required information for creating a root CA.
Country (C) – Type the country code (two characters) in this
box.
State (S)/ Location (L)/ Organization (O)/ Organization Unit
(OU) /Common Name (CN) - Type the name or information for
the root CA with length less than 32 characters.
Email (E) – Type the email address for the root CA with length