Chapter 19 Certificates
The following table describes the labels in this screen.
Table 125 Trusted Remote Host Details
LABEL | DESCRIPTION |
Name | This field displays the identifying name of this certificate. If you want to change |
| the name, type up to 31 characters to identify this key certificate. You may use |
| any character (not including spaces). |
|
|
Certification Path | Click the Refresh button to have this |
| own certificate and a list of certification authority certificates in the hierarchy of |
| certification authorities that validate a certificate’s issuing certification authority. |
| For a trusted host, the list consists of the end entity’s own certificate and the |
| default |
| certificates. |
|
|
Refresh | Click Refresh to display the certification path. |
|
|
Certificate | These |
Information |
|
|
|
Type | This field displays general information about the certificate. With trusted |
| remote host certificates, this field always displays |
| Device is the Certification Authority that signed the certificate. X.509 means |
| that this certificate was created and signed according to the |
| recommendation that defines the formats for |
|
|
Version | This field displays the X.509 version number. |
|
|
Serial Number | This field displays the certificate’s identification number given by the device |
| that created the certificate. |
|
|
Subject | This field displays information that identifies the owner of the certificate, such |
| as Common Name (CN), Organizational Unit (OU), Organization (O) and |
| Country (C). |
|
|
Issuer | This field displays identifying information about the default |
| certificate on the ZyXEL Device that the ZyXEL Device uses to sign the trusted |
| remote host certificates. |
|
|
Signature Algorithm | This field displays the type of algorithm that the ZyXEL Device used to sign the |
| certificate, which is |
| algorithm and the SHA1 hash algorithm). |
|
|
Valid From | This field displays the date that the certificate becomes applicable. The text |
| displays in red and includes a Not Yet Valid! message if the certificate has not |
| yet become applicable. |
|
|
Valid To | This field displays the date that the certificate expires. The text displays in red |
| and includes an Expiring! or Expired! message if the certificate is about to |
| expire or has already expired. |
|
|
Key Algorithm | This field displays the type of algorithm that was used to generate the |
| certificate’s key pair (the ZyXEL Device uses RSA encryption) and the length |
| of the key set in bits (1024 bits for example). |
|
|
Subject Alternative | This field displays the certificate’s owner‘s IP address (IP), domain name |
Name | (DNS) or |
|
|
Key Usage | This field displays for what functions the certificate’s key can be used. For |
| example, “DigitalSignature” means that the key can be used to sign certificates |
| and “KeyEncipherment” means that the key can be used to encrypt text. |
|
|
Basic Constraint | This field displays general information about the certificate. For example, |
| Subject Type=CA means that this is a certification authority’s certificate and |
| “Path Length Constraint=1” means that there can only be one certification |
| authority in the certificate’s path. |
|
|
| 321 |
|
|