PN 82013151

Online Enrollment Information

To enroll online, you must locate the certification authority server and you must possess the certification authority certificate. Most often, you can download the certificate of the certification authority from its web site.

Figure 9. Online Enrollment Settings

You must also specify the enrollment protocol. In addition, you may configure the Socks and proxy settings to get through the firewall if the local server is protected by one.

Enrollment Protocol (A)

Select the enrollment protocol from the drop-down list. Naturally, you should choose a protocol that is supported by the certification authority. The following protocols are available: Simple Certificate Enrollment Protocol (SCEP) and Certificate Management Protocol (CMP).

CA Server Address (B)

Specify the address (URL) of the certification authority web site.

CA Certificate (C)

The certificate of the certification authority is needed to encrypt the certification request before sending it to the certification authority. You can usually fetch it from the authority’s Web site.

In the drop-down menu, you see the possibilities on how to import the certification authority certificate into the request: The most convenient way is to specify here the URL where the certificate is located. In this case, the certificate must be in PEM encoded format. SSH Sentinel then automatically fetches the certificate from the web site. You may also have downloaded the certificate earlier using a web browser and

18

Page 17 Page 19
Page 18
Image 18
Multitech RFIPSC-50, RFIPSC-10 Online Enrollment Information, Enrollment Protocol a, CA Server Address B, CA Certificate C
Page 17 Page 19
Top Page Image Contents