Chapter 9 Authentication
The device uses PKCS#12 format for importing Local Certificates with their private key. PKCS#12 format is a commonly used portable format for importing certificates into browsers. The imported file may also include the CA Certificate, in which case the device adds the CA Certificate to the CA list.
A local certificate can be installed using one of the following methods:
•Install the local certificate directly from the LSM Local Certificate page with a private key. With this method, you must know the private key and have a CA Certificate from the same Certificate Authority that signed the Local Certificate installed on the X family device.
•Perform the certificate request procedure from the LSM Certificate Requests page.
We recommend using the Certificate Request procedure because it is a more secure process. For details on the certificate request procedure, see “Certificate Requests” on page 260.
You can manage Local Certificates from the Local Certificates Request page (Authentication > X.509 Certificates, Local Certificates tab). From this page, you can:
•View Local Certificates currently available
•Import a Local Certificate directly with a private key
•Export Local Certificates
•Delete Local Certificates
The following figure shows the Local Certificates page:
Figure
The Current Local Certificates table provides the following information about existing certificates:
Table
Column | Description |
|
|
|
|
Certificate Name | The name of the certificate |
|
|
Certificate Authority | The Distinguished Name of the CA for this Local Certificate |
|
|
264 X Family LSM User’s Guide V 2.5.1