Chapter 41 Certificates

The following table describes the labels in this screen.

Table 198 Configuration > Object > Certificate > My Certificates > Edit

LABEL

DESCRIPTION

Name

This field displays the identifying name of this certificate. You can use

 

up to 31 alphanumeric and ;‘~!@#$%^&()_+[]{}’,.=- characters.

 

 

Certification Path

This field displays for a certificate, not a certification request.

 

Click the Refresh button to have this read-only text box display the

 

hierarchy of certification authorities that validate the certificate (and

 

the certificate itself).

 

If the issuing certification authority is one that you have imported as

 

a trusted certification authority, it may be the only certification

 

authority in the list (along with the certificate itself). If the certificate

 

is a self-signed certificate, the certificate itself is the only one in the

 

list. The ZyWALL does not trust the certificate and displays “Not

 

trusted” in this field if any certificate on the path has expired or been

 

revoked.

 

 

Refresh

Click Refresh to display the certification path.

 

 

Certificate

These read-only fields display detailed information about the

Information

certificate.

 

 

Type

This field displays general information about the certificate. CA-signed

 

means that a Certification Authority signed the certificate. Self-signed

 

means that the certificate’s owner signed the certificate (not a

 

certification authority). “X.509” means that this certificate was

 

created and signed according to the ITU-T X.509 recommendation

 

that defines the formats for public-key certificates.

 

 

Version

This field displays the X.509 version number. “

 

 

Serial Number

This field displays the certificate’s identification number given by the

 

certification authority or generated by the ZyWALL.

 

 

Subject

This field displays information that identifies the owner of the

 

certificate, such as Common Name (CN), Organizational Unit (OU),

 

Organization (O), State (ST), and Country (C).

 

 

Issuer

This field displays identifying information about the certificate’s

 

issuing certification authority, such as Common Name, Organizational

 

Unit, Organization and Country.

 

With self-signed certificates, this is the same as the Subject Name

 

field.

 

“none” displays for a certification request.

 

 

Signature

This field displays the type of algorithm that was used to sign the

Algorithm

certificate. The ZyWALL uses rsa-pkcs1-sha1 (RSA public-private key

 

encryption algorithm and the SHA1 hash algorithm). Some

 

certification authorities may use rsa-pkcs1-md5 (RSA public-private

 

key encryption algorithm and the MD5 hash algorithm).

 

 

Valid From

This field displays the date that the certificate becomes applicable.

 

“none” displays for a certification request.

 

 

Valid To

This field displays the date that the certificate expires. The text

 

displays in red and includes an Expired! message if the certificate has

 

expired. “none” displays for a certification request.

 

 

644

 

ZyWALL USG 50 User’s Guide