Cisco Systems OL-5490-01 manual Online Certificate Enrollment

Page 63

Chapter 6 Enrolling and Managing Certificates

Enrolling Certificates

Figure 6-2 Online Certificate Enrollment

Step 4 Enter the enrollment parameters.

For online enrollment enter:

Certificate Authority—The Common name or the Subject name of the CA Certificate. This drop-down list contains a history of previously enrolled CA certificates. If you select a CA from this list, the CA URL and the CA Domain fields are pre-populated. For <New> online enrollments, you must enter the CA URL and the CA Domain manually.

CA URL—The URL or network address of the CA. For example, http://198.162.41.9/certsrv/mcep/mcep.dll.

CA Domain—The CA's domain name. For example, qa2000.com.

Challenge Password—Some CAs require that you enter a password to access their site. Enter this password in the Challenge Password field. Obtain the challenge password from your administrator or from the CA.

New Password—The password for this certificate. Each digital certificate is protected by a password. If you create a connection entry that requires a digital certificate for authentication, you must enter the certificate password each time you attempt a connection.

For file enrollment enter:

File encoding type of the output file.

Base-64—The default, is an ASCII-encoded PKCS10 file that you can display because it is in a text format. Use this type when you want to cut and paste the text into the CA's website.

Binary—a base-2 PKCS10 (Public-Key Cryptography Standards) file. You cannot display a binary-encoded file

Filename—The full pathname for the file request. For example, /Users/Anna/Documents/Certificates/mycert.p10.

New Password—The password for this certificate. Each digital certificate is protected by a password. If you create a connection entry that requires a digital certificate for authentication, you must enter the certificate password each time you attempt a connection.

VPN Client User Guide for Mac OS X

 

OL-5490-01

6-3

 

 

 

Page 62 Page 64
Image 63
Page 62 Page 64
Contents VPN Client User Guide for Mac OS VPN Client User Guide for Mac OS N T E N T S Authentication Changing the Password on a Personal Certificate Notifications Audience ContentsRelated Documentation TerminologyDocument Conventions Documentation CD-ROM Obtaining DocumentationData Formats Cisco.comObtaining Technical Assistance Ordering DocumentationDocumentation Feedback Cisco TAC Website Technical Assistance CenterCisco TAC Escalation Center Obtaining Additional Publications and InformationConnection Technologies Understanding the VPN ClientVPN Client Overview Program Features VPN Client FeaturesAdministrator Guide IPSec Features Authentication FeaturesIPSec Attribute Description VPN Client IPSec AttributesXauth OL-5490-01 Gathering Information You Need Verifying System RequirementsObtaining the VPN Client Software Preconfiguring the VPN ClientPreconfiguring the Global Profile Preconfiguring the User ProfileAuthentication Installing the VPN ClientAuthorization Window Introduction VPN Client Installation ProcessSelecting the Application Destination Accepting the License AgreementSelect Destination Window Choosing the Installation TypeEasy Install Window 10 Install Software Progress Window 11 Successful Installation Confirmation Window CLI Version Install Script Notes Uninstalling the VPN ClientSudo /usr/local/bin/vpnuninstall Enter your password OL-5490-01 VPN Client Menu Navigating the User InterfaceChoosing a Run Mode Operating in Simple ModeVPN Client Window-Simple Mode Main Menus-Simple Mode Connection Entries MenuStatus Menu VPN Client Window-Advanced Mode Operating in Advanced ModeMain Tabs-Advanced Mode Toolbar Action Buttons-Advanced ModeConnection Entries Menu Main Menus-Advanced Mode10 Status Menu Certificates MenuLog Menu Right-Click Menus14 Connection Entries Right-Click Menu Connection Entries Tab Right-Click Menu15 Certificates Tab Right-Click Menu Certificates Tab Right-Click MenuCreating a Connection Entry Configuring Connection EntriesVPN Client Window Group Authentication Authentication MethodsCertificate Authentication Mutual Group AuthenticationCertificate Authentication Transport Parameters Transport SettingsEnable Transport Tunneling Transparent Tunneling ModeAllow Local LAN Access Peer Response Timeout Backup ServersEnter the hostname or IP address of the backup server to add Configuring Connection Entries Backup Servers Establishing a Connection Checking Prerequisites2shows the VPN Client window in simple mode Choosing Authentication Methods Connecting to a Default Connection EntryShared Key Authentication Radius Server Authentication VPN Group Name and Password AuthenticationUser Authentication for Radius SecurID AuthenticationUser Authentication for RSA SecurID Using Digital CertificatesEnrolling and Managing Certificates Using the Certificate StoreCertificate Store Enrolling CertificatesOnline Certificate Enrollment Entry Field Description Managing Enrollment Requests Viewing the Enrollment RequestDeleting an Enrollment Request Retrying an Enrollment Request Changing the Password on an Enrollment RequestViewing a Certificate Importing a CertificateCertificate Properties Whether the export is successful Exporting a CertificateSuccessful Export Prompt Deleting a CertificateVerifying a Certificate 11 Password Prompt for Deleting Enrollment CertificatesChanging the Password on a Personal Certificate Importing a Connection Entry Managing Connection EntriesImport VPN Connection Modifying a Connection EntryDeleting a Connection Entry Connection Entry SettingsEvent Logging Enable LoggingSet Logging Options Clear LoggingLog Class Description Module Logging Levels Opening the Log WindowLog Window Viewing StatisticsField Description Tunnel DetailsRoute Details Cisco VPN Client Administrator Guide lists allStatistics Window-Route Details Notifications10 Notifications Window D E IN-2 IN-3 IN-4 IN-5 IN-6 IN-7 IN-8
Top Page Image Contents