User's Manual
Table Of Contents
- Reference Manual for the NETGEAR ProSafe VPN Client
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Installation
- Chapter 4 Configuring L2TP Connections
- Chapter 5 Using the Security Policy Editor
- What is the Security Policy Editor?
- Basic Steps to Configure a Security Policy
- How to Secure All Connections
- How to Configure Global Policy Settings
- How to Configure Other Connections
- How to Add and Configure a Connection
- How to Enter a Preshared Key
- How to Configure a Gateway
- Configure My Identity
- Configure Security Policy Connection Options
- Configure Authentication (Phase 1)
- Configure Key Exchange (Phase 2)
- Edit a Distinguished Name
- Configure and Manage Connections
- Manage Proposals
- Manage Redundant Gateways
- Manage the Security Policy
- Chapter 6 Using the Certificate Manager
- What is the Certificate Manager?
- Obtain Certificates
- With Online (SCEP) Enrollment
- CAs that Support SCEP
- Retrieve a CA Certificate Online
- Configure a CA Certificate
- Use an HTTP Proxy Server for Online Certificate Requests and CRL Updates
- Import a CA Certificate
- Select a CSP
- Request a Personal Certificate
- Define How Often to Check for and Retrieve New Personal Certificates
- Retrieve a Personal Certificate Manually
- Manage Certificate Requests
- With Manual (File-Based) Enrollment
- Obtain Certificates Through Internet Explorer
- With Online (SCEP) Enrollment
- Manage Certificates
- Manage Certificate Revocation Lists (CRLs)
- Manage the Trust Policy
- Chapter 7 Using Sessions
- Chapter 8 Distributing Customized Profiles
- Chapter 9 Troubleshooting
- Appendix A Networks, Routing, and Firewall Basics
- Appendix B Virtual Private Networking
- Appendix C NETGEAR ProSafe VPN Client to NETGEAR FVS318 or FVM318 VPN Routers
- Appendix D NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
- Glossary
- Index
Reference Manual for the NETGEAR ProSafe VPN Client
8-2 Distributing Customized Profiles
202-10015-01
Create a Customized Installation Containing a Security
Policy and a CA Certificate
1. Obtain a CA certificate.
2. Export this CA certificate; name the file CaCert.cser.
3. Configure a security policy.
4. Export the security policy; name the file IPSecPolicy.spd.
5. Add the CaCert.cser and the IPSecPolicy.spd files to the same directory that the setup.exe
file is located in on the NETGEAR ProSafe VPN Client installation media.
6. Deploy this customized installation to users on a network drive, Web page, CD-ROM, or
other location/medium as a directory or .zip or .exe file.
7. Tell users how to install the product and perform these tasks:
a. Add the CA certificate to the Root Store, when prompted.
b. Complete the online personal certificate request form that opens automatically. They need
their domain name and IP address and, if they are allowed to transfer their personal
certificate to another computer, they must select the Generate exportable key option.
Create a Customized Installation Containing a Security
Policy, CA Certificate, and Personal Certificate
Note: Because personal certificates are unique to each individual, a single personal certificate
cannot be distributed to multiple users.
1. Obtain a CA certificate.
2. Export the CA certificate; name the file CaCert.cser.
3. Request a personal certificate for each user to receive this customized installation.
Note: When you create the certificate request, click Generate exportable key.
4. Export the personal certificate, which includes the private key; name the file IPSecCerts.p12.
5. Configure a security policy.