Certificate Properties | Cisco Systems OL-5490-01 specs

Chapter 6 Enrolling and Managing Certificates

Viewing a Certificate

Figure 6-7 Certificate Properties

A typical digital certificate contains the following information:

•Common name—The name of the owner, usually both the first and last names. This field identifies the owner within the Public Key Infrastructure (PKI organization).

•Department—The name of the owner’s department. This is the same as the organizational unit in the Subject field.

•Company—The company in which the owner is using the certificate. This is the same as the organization in the Subject field.

•State—The state in which the owner is using the certificate.

•Country—The 2-character country code in which the owner’s system is located.

•Email—The e-mail address of the owner of the certificate.

•Thumbprint—The MD5 and SHA-1 hash of the certificate’s complete contents. This provides a means for validating the authenticity of the certificate. For example, if you contact the issuing CA, you can use this identifier to verify that this certificate is the correct one to use.

•Key size—The size of the signing key pair in bits.

•Subject—The fully qualified distinguished name (FQDN) of the certificate’s owner. This field uniquely identifies the owner of the certificate in a format that can be used for LDAP and X.500 directory queries. A typical subject includes the following fields:

–common name (cn)

–organizational unit, or department (ou)

–organization or company (o)

–locality, city, or town (l)

VPN Client User Guide for Mac OS X

6-8	OL-5490-01

Image 68

Cisco Systems OL-5490-01 manual Certificate Properties

Contents

VPN Client User Guide for Mac OS VPN Client User Guide for Mac OS N T E N T S Authentication Changing the Password on a Personal Certificate Notifications Contents Audience Document Conventions Related DocumentationTerminology Obtaining Documentation Data FormatsCisco.com Documentation CD-ROM Documentation Feedback Obtaining Technical AssistanceOrdering Documentation Technical Assistance Center Cisco TAC Website Obtaining Additional Publications and Information Cisco TAC Escalation Center Understanding the VPN Client Connection Technologies VPN Client Overview VPN Client Features Program Features Administrator Guide Authentication Features IPSec Features VPN Client IPSec Attributes IPSec Attribute Description Xauth OL-5490-01 Verifying System Requirements Gathering Information You Need Preconfiguring the VPN Client Obtaining the VPN Client Software Preconfiguring the User Profile Preconfiguring the Global Profile Installing the VPN Client Authentication Authorization Window VPN Client Installation Process Introduction Accepting the License Agreement Selecting the Application Destination Choosing the Installation Type Select Destination Window Easy Install Window 10 Install Software Progress Window 11 Successful Installation Confirmation Window Uninstalling the VPN Client CLI Version Install Script Notes Sudo /usr/local/bin/vpnuninstall Enter your password OL-5490-01 Navigating the User Interface VPN Client Menu VPN Client Window-Simple Mode Choosing a Run ModeOperating in Simple Mode Status Menu Main Menus-Simple ModeConnection Entries Menu Operating in Advanced Mode VPN Client Window-Advanced Mode Toolbar Action Buttons-Advanced Mode Main Tabs-Advanced Mode Main Menus-Advanced Mode Connection Entries Menu Certificates Menu 10 Status Menu Right-Click Menus Log Menu Connection Entries Tab Right-Click Menu 14 Connection Entries Right-Click Menu Certificates Tab Right-Click Menu 15 Certificates Tab Right-Click Menu Configuring Connection Entries Creating a Connection Entry VPN Client Window Authentication Methods Group Authentication Mutual Group Authentication Certificate Authentication Certificate Authentication Transport Settings Transport Parameters Allow Local LAN Access Enable Transport TunnelingTransparent Tunneling Mode Backup Servers Peer Response Timeout Enter the hostname or IP address of the backup server to add Configuring Connection Entries Backup Servers Checking Prerequisites Establishing a Connection 2shows the VPN Client window in simple mode Shared Key Authentication Choosing Authentication MethodsConnecting to a Default Connection Entry VPN Group Name and Password Authentication Radius Server Authentication SecurID Authentication User Authentication for Radius Using Digital Certificates User Authentication for RSA SecurID Using the Certificate Store Enrolling and Managing Certificates Enrolling Certificates Certificate Store Online Certificate Enrollment Entry Field Description Deleting an Enrollment Request Managing Enrollment RequestsViewing the Enrollment Request Changing the Password on an Enrollment Request Retrying an Enrollment Request Importing a Certificate Viewing a Certificate Certificate Properties Exporting a Certificate Whether the export is successful Deleting a Certificate Successful Export Prompt 11 Password Prompt for Deleting Enrollment Certificates Verifying a Certificate Changing the Password on a Personal Certificate Managing Connection Entries Importing a Connection Entry Modifying a Connection Entry Import VPN Connection Connection Entry Settings Deleting a Connection Entry Enable Logging Event Logging Clear Logging Set Logging Options Log Class Description Module Opening the Log Window Logging Levels Viewing Statistics Log Window Tunnel Details Field Description Cisco VPN Client Administrator Guide lists all Route Details Notifications Statistics Window-Route Details 10 Notifications Window D E IN-2 IN-3 IN-4 IN-5 IN-6 IN-7 IN-8