Manuals / Brands / Computer Equipment / Network Router / HP / Computer Equipment / Network Router

HP Client Bridge M111 Certificate and private key store, Installing a new private key/public key certificate chain pair, ID:, Delete:, Issued to:, Issued by:, Current usage:

1 88

Download 88 pages, 1.23 Mb

		Working with the M111
		Managing certificates

Content and
file format	Items carried in the file	Description

X.509 certificate in	One or more X.509 certificate	Popular format in the Unix
PEM file		world. X.509 DER certificate is
		base64 encoded and placed
		between
		"-----BEGIN CERTIFICATE-----"
		and
		"-----END CERTIFICATE-----"
		lines. Multiple certificates can be
		repeated in the same file.

ASN.1 DER encoded	One X.509 CRL	Most basic format supported for
X.509 CRL		CRL.

X.509 CRL in PEM file	One X.509 CRL	Same format as X.509 certificate
		in PEM format, except that the
		lines contain BEGIN CRL and
		END CRL.

Certificate and private key store

This list displays all certificates installed on the M111. The M111 uses these certificates and private keys to authenticate itself to peers.

The following information is displayed for each certificate in the list:

ID: A sequentially assigned number to help identify certificates with the same common name.

Issued to: Name of the certificate holder. Select the name to view the contents of the certificate.

Issued by: Name of the CA that issued the certificate.

Current usage: Lists the services that are currently using this certificate.

Delete: Select to remove the certificate from the certificate store.

Installing a new private key/public key certificate chain pair

The certificate you install must:

Be in PKCS #12 format.

Contain a private key (a password controls access to the private key).

Not have a name that is an IP address. The name should be a domain name containing at least one dot. If you try to add a certificate with an invalid name, the default certificate is restored.

The name in the certificate is automatically assigned as the domain name of the M111.

3-41

Contents

Page Page HP ProCurve M111 Client Bridge Publication Number Applicable Products Trademark Credits Disclaimer Warranty 1 Introduction 2 Getting started 3 Working with the M111 Page Page A Regulatory information BResetting to factory defaults Page Introduction About this guide Warnings and cautions Commands and program listings Introducing the M111 Client Bridge Safety information Professional Installation Required Servicing HP ProCurve Networking support Before contacting support Online documentation Getting started Deploying the M111 Scenario 1: Connecting wired devices to a wireless network Note A. Configure your computer 192.168.1.1 C. Start the M111 D. Connect to the management tool and login https://192.168.1.1 admin Username Save About passwords Wireless Base MAC Home https://192.168.5.11 F.Configure a station profile General Enabled Profile name: WLAN name (SSID): AP’s MAC address: Scenario 2: Connecting a wired device using MAC address cloning G. Configure MAC cloning options Wireless > Bridging Ethernet MAC cloning Discovered MAC address Management tool (TCP port 443) H. Connect the wired device to the M111 Scenario 3: Connecting a serial device to a wireless network G. Configure the serial connection 2.Select Network > TCP Serial. The TCP to serial configuration page opens TCP connection Mode Serial port State TCP connection status Page Working with the M111 Page Management tool Manager and Operator accounts Passwords Security policies Web server Auto-refresh IP address configuration To configure IP addressing 1. Select Network > Ports Bridge port Assign IP address via Configure Radio configuration Wireless mode Restrict channels to Antenna selection Fast roaming threshold Fast roaming delta threshold Fast roaming threshold count Minimum SNR threshold Scan channel delay Fast scan channel delay Roaming persistence Using station profiles to establish a wireless link Active scanning enabled Priority General Profile name WLAN name (SSID) AP's MAC address Active scanning Wireless security Wireless protection Key source TLS: Security > 802.1X certificates TTLS: FAST: Validate server certificate: Viewing APs in the neighborhood Field descriptions Configuring Quality of Service (QoS) Priority mechanisms Very-high,high, normal, low priority Differentiated Services (DiffServ) TOS IP QoS Disabled Upstream DiffServ tagging Settings Connecting serial devices one Serial port connector To connect a serial device 2. Select Network > TCP serial. The TCP to serial configuration page opens TCP to serial configuration TCP connection Client: Remote IP address TCP port Server: Port control Drop wireless link when port 1 is connected TCP connection status DNS configuration DNS servers Dynamically assigned DNS servers Override dynamically assigned DNS servers DNS advanced settings DNS cache Handling unsupported traffic Cloning the address of a wired device Limitations Enabling Ethernet MAC cloning Discovered MAC address: Wireless access to the M111 when MAC cloning is active Setting up management traffic interception Management tool (TCP port 443) SNMP agent (UDP port 161) SNMP notifications (UDP port 162) Remote log (UDP port 514) Using filters to restrict wireless traffic Assigning a management address SNMP Attributes v1/v2c communities v3 users Notification receivers Host Managing certificates 802.1X — Install TLS client certificate Certificate file Password 802.1X — Manage TLS client certificates 802.1X — Trusted CA certificates Install 802.1X — Manage CA certificates Certificate Trusted CA certificate store Installing a new CA certificate CA certificate import formats Certificate and private key store Installing a new private key/public key certificate chain pair Default installed private key/public key certificate chains Changing the certificate assigned to a service About certificate warnings Configuration file management Backup configuration Reset configuration Restore configuration Software updates Performing an immediate software update select Install Performing a scheduled update 1.Enable Scheduled install Day of week Page Regulatory information Manufacturer's FCC Declaration of Conformity Statement Warning Exposure to Radio Frequency Radiation Countries of Operation & Conditions of Use Operation Using 5 GHz Channels in the European Community Disposal of Waste Equipment by Users in Private Household in the European Union DGT LPD (Low Power Device) Statement Resetting to factory defaults How it works