Manuals / Brands / Computer Equipment / Network Router / HP / Computer Equipment / Network Router

HP Client Bridge M111 Trusted CA certificate store, Installing a new CA certificate, CA certificate import formats, ID:, CRL:, Browse, Delete:, Install, Issued to:, Content and

1 88

Download 88 pages, 1.23 Mb

Working with the M111

Managing certificates

Trusted CA certificate store

This list displays all CA certificates installed on the M111. The M111 uses the CA certificates to validate the certificates supplied by administrators accessing the M111 management tool. Multiple CA certificates can be installed to support validation of certificates issued by different CAs.

The following information is displayed for each certificate in the list:

ID: A sequentially assigned number to help identify certificates with the same common name.

Issued to: Name of the certificate holder. Select the name to view the contents of the certificate.

Current usage: Lists the services that are currently using this certificate.

CRL: Indicates if a certificate revocation list is bound to the certificate. An X.509 certificate revocation list is a document produced by a certificate authority (CA) that provides a list of serial numbers of certificates that have been signed by the CA but that should be rejected.

Delete: Select to remove the certificate from the certificate store.

Installing a new CA certificate

1.Specify the name of the certificate file or select Browse to choose from a list. CA certificates must be in X.509 or PKCS #7 format.

2.Select Install to install a new CA certificate.

CA certificate import formats

The import mechanism supports importing the ASN.1 DER encoded X.509 certificate directly or as part of two other formats:

PKCS #7 (widely used by Microsoft products)

PEM, defined by OpenSSL (popular in the Unix world)

The CRL can be imported as an ASN.1 DER encoded X.509 certificate revocation list directly or as part of a PEM file.

Content and
file format	Items carried in the file	Description

ASN.1 DER encoded	One X.509 certificate	This is the most basic format
X.509 certificate		supported, the certificate
		without any envelope.

X.509 certificate in	One X.509 certificate	Popular format with Microsoft
PKCS #7 file		products.

3-40

Contents

Page Page HP ProCurve M111 Client Bridge Publication Number Applicable Products Trademark Credits Disclaimer Warranty 1 Introduction 2 Getting started 3 Working with the M111 Page Page A Regulatory information BResetting to factory defaults Page Introduction About this guide Warnings and cautions Commands and program listings Introducing the M111 Client Bridge Safety information Professional Installation Required Servicing HP ProCurve Networking support Before contacting support Online documentation Getting started Deploying the M111 Scenario 1: Connecting wired devices to a wireless network Note A. Configure your computer 192.168.1.1 C. Start the M111 D. Connect to the management tool and login https://192.168.1.1 admin Username Save About passwords Wireless Base MAC Home https://192.168.5.11 F.Configure a station profile General Enabled Profile name: WLAN name (SSID): AP’s MAC address: Scenario 2: Connecting a wired device using MAC address cloning G. Configure MAC cloning options Wireless > Bridging Ethernet MAC cloning Discovered MAC address Management tool (TCP port 443) H. Connect the wired device to the M111 Scenario 3: Connecting a serial device to a wireless network G. Configure the serial connection 2.Select Network > TCP Serial. The TCP to serial configuration page opens TCP connection Mode Serial port State TCP connection status Page Working with the M111 Page Management tool Manager and Operator accounts Passwords Security policies Web server Auto-refresh IP address configuration To configure IP addressing 1. Select Network > Ports Bridge port Assign IP address via Configure Radio configuration Wireless mode Restrict channels to Antenna selection Fast roaming threshold Fast roaming delta threshold Fast roaming threshold count Minimum SNR threshold Scan channel delay Fast scan channel delay Roaming persistence Using station profiles to establish a wireless link Active scanning enabled Priority General Profile name WLAN name (SSID) AP's MAC address Active scanning Wireless security Wireless protection Key source TLS: Security > 802.1X certificates TTLS: FAST: Validate server certificate: Viewing APs in the neighborhood Field descriptions Configuring Quality of Service (QoS) Priority mechanisms Very-high,high, normal, low priority Differentiated Services (DiffServ) TOS IP QoS Disabled Upstream DiffServ tagging Settings Connecting serial devices one Serial port connector To connect a serial device 2. Select Network > TCP serial. The TCP to serial configuration page opens TCP to serial configuration TCP connection Client: Remote IP address TCP port Server: Port control Drop wireless link when port 1 is connected TCP connection status DNS configuration DNS servers Dynamically assigned DNS servers Override dynamically assigned DNS servers DNS advanced settings DNS cache Handling unsupported traffic Cloning the address of a wired device Limitations Enabling Ethernet MAC cloning Discovered MAC address: Wireless access to the M111 when MAC cloning is active Setting up management traffic interception Management tool (TCP port 443) SNMP agent (UDP port 161) SNMP notifications (UDP port 162) Remote log (UDP port 514) Using filters to restrict wireless traffic Assigning a management address SNMP Attributes v1/v2c communities v3 users Notification receivers Host Managing certificates 802.1X — Install TLS client certificate Certificate file Password 802.1X — Manage TLS client certificates 802.1X — Trusted CA certificates Install 802.1X — Manage CA certificates Certificate Trusted CA certificate store Installing a new CA certificate CA certificate import formats Certificate and private key store Installing a new private key/public key certificate chain pair Default installed private key/public key certificate chains Changing the certificate assigned to a service About certificate warnings Configuration file management Backup configuration Reset configuration Restore configuration Software updates Performing an immediate software update select Install Performing a scheduled update 1.Enable Scheduled install Day of week Page Regulatory information Manufacturer's FCC Declaration of Conformity Statement Warning Exposure to Radio Frequency Radiation Countries of Operation & Conditions of Use Operation Using 5 GHz Channels in the European Community Disposal of Waste Equipment by Users in Private Household in the European Union DGT LPD (Low Power Device) Statement Resetting to factory defaults How it works