Chapter 41 Certificates

 

Table 198 Configuration > Object > Certificate > My Certificates > Edit

 

LABEL

DESCRIPTION

 

Key Algorithm

This field displays the type of algorithm that was used to generate the

 

 

certificate’s key pair (the ZyWALL uses RSA encryption) and the

 

 

length of the key set in bits (1024 bits for example).

 

 

 

 

Subject

This field displays the certificate owner‘s IP address (IP), domain

 

Alternative Name

name (DNS) or e-mail address (EMAIL).

 

 

 

 

Key Usage

This field displays for what functions the certificate’s key can be used.

 

 

For example, “DigitalSignature” means that the key can be used to

 

 

sign certificates and “KeyEncipherment” means that the key can be

 

 

used to encrypt text.

 

 

 

 

Basic Constraint

This field displays general information about the certificate. For

 

 

example, Subject Type=CA means that this is a certification

 

 

authority’s certificate and “Path Length Constraint=1” means that

 

 

there can only be one certification authority in the certificate’s path.

 

 

This field does not display for a certification request.

 

 

 

 

MD5 Fingerprint

This is the certificate’s message digest that the ZyWALL calculated

 

 

using the MD5 algorithm.

 

 

 

 

SHA1 Fingerprint

This is the certificate’s message digest that the ZyWALL calculated

 

 

using the SHA1 algorithm.

 

 

 

 

Certificate in PEM

This read-only text box displays the certificate or certification request

 

(Base-64)

in Privacy Enhanced Mail (PEM) format. PEM uses lowercase letters,

 

Encoded Format

uppercase letters and numerals to convert a binary certificate into a

 

 

printable form.

 

 

You can copy and paste a certification request into a certification

 

 

authority’s web page, an e-mail that you send to the certification

 

 

authority or a text editor and save the file on a management

 

 

computer for later manual enrollment.

 

 

You can copy and paste a certificate into an e-mail to send to friends

 

 

or colleagues or you can copy and paste a certificate into a text editor

 

 

and save the file on a management computer for later distribution

 

 

(via floppy disk for example).

 

 

 

 

Export

This button displays for a certification request. Use this button to save

 

 

a copy of the request without its private key. Click this button and

 

 

then Save in the File Download screen. The Save As screen opens,

 

 

browse to the location that you want to use and click Save.

 

 

 

 

Export Certificate

Use this button to save a copy of the certificate without its private

 

Only

key. Click this button and then Save in the File Download screen.

 

 

The Save As screen opens, browse to the location that you want to

 

 

use and click Save.

 

 

 

 

Password

If you want to export the certificate with its private key, create a

 

 

password and type it here. Make sure you keep this password in a

 

 

safe place. You will need to use it if you import the certificate to

 

 

another device.

 

 

 

 

Export Certificate

Use this button to save a copy of the certificate with its private key.

 

with Private Key

Type the certificate’s password and click this button. Click Save in the

 

 

File Download screen. The Save As screen opens, browse to the

 

 

location that you want to use and click Save.

 

 

 

 

645

ZyWALL USG 50 User’s Guide