Chapter 41 Certificates

The following table describes the labels in this screen.

Table 202 Configuration > Object > Certificate > Trusted Certificates > Import

LABEL

DESCRIPTION

File Path

Type in the location of the file you want to upload in this field or click Browse

 

to find it.

 

You cannot import a certificate with the same name as a certificate that is

 

already in the ZyWALL.

 

 

Browse

Click Browse to find the certificate file you want to upload.

 

 

OK

Click OK to save the certificate on the ZyWALL.

 

 

Cancel

Click Cancel to quit and return to the previous screen.

 

 

41.4 Certificates Technical Reference

OCSP

OCSP (Online Certificate Status Protocol) allows an application or device to check whether a certificate is valid. With OCSP the ZyWALL checks the status of individual certificates instead of downloading a Certificate Revocation List (CRL). OCSP has two main advantages over a CRL. The first is real-time status information. The second is a reduction in network traffic since the ZyWALL only gets information on the certificates that it needs to verify, not a huge list. When the ZyWALL requests certificate status information, the OCSP server returns a “expired”, “current” or “unknown” response.

 

653

ZyWALL USG 50 User’s Guide