HP-UX IPSec version A.02.00 Administrator's Guide
Using Certificates with HP-UX IPSec
Using VeriSign Certificates
Chapter 4 119
3. The local Managed PKI Administrator uses a web browser to visit
the Managed PKI Control Center website and approve the certificate
request. This sends an Approve Request message to the Managed
PKI CA.
4. The IPSec administrator requests ipsec_mgr to check on the
certificate request. The ipsec_mgr program sends a message to the
Managed PKI Control Center to retrieve the certificate.
5. The Managed PKI CA sends the certificate to ipsec_mgr. The
ipsec_mgr program stores the certificate and associated information
in files for HP-UX IPSec to use.
Figure 4-1 VeriSign PKI Data Flow
VeriSign Certificate Tasks
To use VeriSign certificates, you must complete the following tasks:
Step 1. Complete and verify the prerequisite requirements.
Step 2. Configure web proxy server parameters if you will use a web proxy to
access the VeriSign Managed PKI Control Center. You must do this on
each HP-UX IPSec system using VeriSign certificates.
Step 3. Register the Managed PKI Administrator. You only need to do this once,
regardless of the number of IPSec systems using VeriSign certificates.