Cisco Systems OL-5490-01 manual Mutual Group Authentication, Certificate Authentication

Page 48

Chapter 4 Configuring Connection Entries

Authentication Methods

Figure 4-3 Group Authentication

Step 2 Enter the name of the IPSec group you belong to.

Step 3 Enter the password for your IPSec group. The field displays only asterisks.

Step 4 Confirm the password by entering it again.

Step 5 Click Save. The Connection Entry dialog box closes, and you return to the Connection Entries tab.

Mutual Group Authentication

When you select mutual group authentication, the VPN Client verifies whether you have a root certificate installed. If not, it prompts to import one. Before you continue, you must import a root certificate. For information on importing a certificate, see Importing a Certificate.

When you have installed a root certificate (if required), follow the steps in Group Authentication.

Certificate Authentication

Use this procedure if you plan to use digital certificates for authenticating for this connection entry.

You can obtain a digital certificate for use with the VPN Client by enrolling with a Public Key Infrastructure (PKI) or by importing a certificate from a file.

To configure this connection entry for a digital certificate:

Step 1 From the Authentication tab, click the Certificate Authentication radio button (Figure 4-4).

VPN Client User Guide for Mac OS X

4-4	OL-5490-01

Image 48

Contents VPN Client User Guide for Mac OS VPN Client User Guide for Mac OS N T E N T S Authentication Changing the Password on a Personal Certificate Notifications Contents AudienceRelated Documentation TerminologyDocument Conventions Obtaining Documentation Data FormatsCisco.com Documentation CD-ROMObtaining Technical Assistance Ordering DocumentationDocumentation Feedback Technical Assistance Center Cisco TAC WebsiteObtaining Additional Publications and Information Cisco TAC Escalation CenterUnderstanding the VPN Client Connection TechnologiesVPN Client Overview VPN Client Features Program FeaturesAdministrator Guide Authentication Features IPSec FeaturesVPN Client IPSec Attributes IPSec Attribute DescriptionXauth OL-5490-01 Verifying System Requirements Gathering Information You NeedPreconfiguring the VPN Client Obtaining the VPN Client SoftwarePreconfiguring the User Profile Preconfiguring the Global ProfileInstalling the VPN Client AuthenticationAuthorization Window VPN Client Installation Process IntroductionAccepting the License Agreement Selecting the Application DestinationChoosing the Installation Type Select Destination WindowEasy Install Window 10 Install Software Progress Window 11 Successful Installation Confirmation Window Uninstalling the VPN Client CLI Version Install Script NotesSudo /usr/local/bin/vpnuninstall Enter your password OL-5490-01 Navigating the User Interface VPN Client MenuChoosing a Run Mode Operating in Simple ModeVPN Client Window-Simple Mode Main Menus-Simple Mode Connection Entries MenuStatus Menu Operating in Advanced Mode VPN Client Window-Advanced ModeToolbar Action Buttons-Advanced Mode Main Tabs-Advanced ModeMain Menus-Advanced Mode Connection Entries MenuCertificates Menu 10 Status MenuRight-Click Menus Log MenuConnection Entries Tab Right-Click Menu 14 Connection Entries Right-Click MenuCertificates Tab Right-Click Menu 15 Certificates Tab Right-Click MenuConfiguring Connection Entries Creating a Connection EntryVPN Client Window Authentication Methods Group AuthenticationMutual Group Authentication Certificate AuthenticationCertificate Authentication Transport Settings Transport ParametersEnable Transport Tunneling Transparent Tunneling ModeAllow Local LAN Access Backup Servers Peer Response TimeoutEnter the hostname or IP address of the backup server to add Configuring Connection Entries Backup Servers Checking Prerequisites Establishing a Connection2shows the VPN Client window in simple mode Choosing Authentication Methods Connecting to a Default Connection EntryShared Key Authentication VPN Group Name and Password Authentication Radius Server AuthenticationSecurID Authentication User Authentication for RadiusUsing Digital Certificates User Authentication for RSA SecurIDUsing the Certificate Store Enrolling and Managing CertificatesEnrolling Certificates Certificate StoreOnline Certificate Enrollment Entry Field Description Managing Enrollment Requests Viewing the Enrollment RequestDeleting an Enrollment Request Changing the Password on an Enrollment Request Retrying an Enrollment RequestImporting a Certificate Viewing a CertificateCertificate Properties Exporting a Certificate Whether the export is successfulDeleting a Certificate Successful Export Prompt11 Password Prompt for Deleting Enrollment Certificates Verifying a CertificateChanging the Password on a Personal Certificate Managing Connection Entries Importing a Connection EntryModifying a Connection Entry Import VPN ConnectionConnection Entry Settings Deleting a Connection EntryEnable Logging Event LoggingClear Logging Set Logging OptionsLog Class Description Module Opening the Log Window Logging LevelsViewing Statistics Log WindowTunnel Details Field DescriptionCisco VPN Client Administrator Guide lists all Route DetailsNotifications Statistics Window-Route Details10 Notifications Window D E IN-2 IN-3 IN-4 IN-5 IN-6 IN-7 IN-8