Cisco Systems OL-5490-01 - page 64

6-4

VPN Client User Guide for Mac OS X

OL-5490-01

Chapter6 Enrolling and Managing Certificates

Enrolling Certificates

Step5 Click Next to continue with certificate enrollment. The Certificate Enrollment dialog box appears

(Figure 6-3).

Figure6-3 Certificate Enrollment

Step6 Enter the remaining certificate enrollment parameters. All fields are required unless they are grayed out.

Table 6 -1 describes the entry fields.

Step7 Click Enroll to enroll a certificate from a CA, Go Back to review previous certificate enrollment

parameters, or Cancel.

Table6-1 Certifi cate Enrollment Parameters

Entry Field Description

Name (CN) The common name for the certificate. The common name can be the

name of a person, system, or other entity. It is the most specific level

in the identification hierarchy. The common name becomes the

name of the certificate. For example, Fred Flinstone.

Domain The Fully Qualified Domain Name (FQDN) of the host for your

system. For example, Dialin_Server.

Email (E) The user e-mail address for the certificate. For example,

email@company.com

IP Address The IP address of the user's system. For example, 192.168.23.9

Department (OU) The VPN group that this user belongs to. This field correlates to the

Organizational Unit (OU). The OU is the same as the Group Name

configured in a VPN 3000 Series Concentrator, for example.

Company (O) The company name for the certificate.

State (ST) The state for the certificate.

Country (C) The 2-letter country code for your country. For example, US. This

two-letter country code must conform to ISO 3166 country

abbreviations.

Contents

Main VPN Client User Guide for Mac OS X Page CONTENTS Page Page Page About This Guide Audience Contents Related Documentation Terminology Document Conventions Data Formats Obtaining Documentation Cisco.com Documentation CD-ROM Ordering Documentation Documentation Feedback Obtaining Technical Assistance Cisco.com Technical Assistance Center Cisco TAC Website Cisco TAC Escalation Center Obtaining Additional Publications and Information Understanding the VPN Client Connection Technologies VPN Client Overview VPN Client Features Program Features Page Authentication Features IPSec Features VPN Client IPSec Attributes Page Page Installing the VPN Client Verifying System Requirements Gathering Information You Need Obtaining the VPN Client Software Preconfiguring the VPN Client Preconfiguring the User Profile Preconfiguring the Global Profile Bundling a Root Certificate with the Installation Package for Darwin Installing the VPN Client Authentication Page VPN Client Installation Process Introduction Accepting the License Agreement Selecting the Application Destination Choosing the Installation Type Page Page Page CLI Version Install Script Notes Uninstalling the VPN Client Page Page Navigating the User Interface VPN Client Menu Choosing a Run Mode Operating in Simple Mode VPN Client WindowSimple Mode Main MenusSimple Mode Connection Entries Menu Status Menu Operating in Advanced Mode VPN Client WindowAdvanced Mode Toolbar Action ButtonsAdvanced Mode Main TabsAdvanced Mode Main MenusAdvanced Mode Connection Entries Menu Status Menu Certificates Menu Log Menu Right-Click Menus Connection Entries Tab Right-Click Menu Certificates Tab Right-Click Menu Configuring Connection Entries Creating a Connection Entry Page Authentication Methods Group Authentication Mutual Group Authentication Certificate Authentication Page Transport Parameters Enable Transport Tunneling Transparent Tunneling Mode Allow Local LAN Access Peer Response Timeout Backup Servers Page Page Establishing a VPN Connection Checking Prerequisites Establishing a Connection Page Connecting to a Default Connection Entry Choosing Authentication Methods Shared Key Authentication VPN Group Name and Password Authentication RADIUS Server Authentication SecurID Authentication Using Digital Certificates Enrolling and Managing Certificates Using the Certificate Store Enrolling Certificates Page Page Managing Enrollment Requests Viewing the Enrollment Request Deleting an Enrollment Request Changing the Password on an Enrollment Request Retrying an Enrollment Request Importing a Certificate Viewing a Certificate Page Exporting a Certificate Deleting a Certificate Verifying a Certificate Changing the Password on a Personal Certificate Managing the VPN Client Managing Connection Entries Importing a Connection Entry Modifying a Connection Entry Deleting a Connection Entry Event Logging Enable Logging Clear Logging Set Logging Options Page Opening the Log Window Viewing Statistics Tunnel Details Route Details Notifications Page INDEX A B C D E F G H I K L M N O P Q R S T U V W X