Chapter 12 Certificates
The following table describes the labels in this screen.
Table 66 My Certificates
LABEL | DESCRIPTION |
PKI Storage | This bar displays the percentage of the ZyXEL Device’s PKI storage space that is |
Space in Use | currently in use. The bar turns from green to red when the maximum is being |
| approached. When the bar is red, you should consider deleting expired or |
| unnecessary certificates before adding more certificates. |
|
|
My Certificate |
|
Setting |
|
|
|
# | This field displays the certificate index number. The certificates are listed in |
| alphabetical order. |
|
|
Name | This field displays the name used to identify this certificate. It is recommended that |
| you give each certificate a unique name. |
|
|
Type | This field displays what kind of certificate this is. |
| REQ represents a certification request and is not yet a valid certificate. Send a |
| certification request to a certification authority, which then issues a certificate. Use |
| the My Certificate Import screen to import the certificate and replace the request. |
| SELF represents a |
| *SELF represents the default |
| to sign imported trusted remote host certificates. |
| CERT represents a certificate issued by a certification authority. |
|
|
Subject | This field displays identifying information about the certificate’s owner, such as CN |
| (Common Name), OU (Organizational Unit or department), O (Organization or |
| company) and C (Country). It is recommended that each certificate have unique |
| subject information. |
|
|
Issuer | This field displays identifying information about the certificate’s issuing certification |
| authority, such as a common name, organizational unit or department, |
| organization or company and country. With |
| same information as in the Subject field. |
|
|
Valid From | This field displays the date that the certificate becomes applicable. The text |
| displays in red and includes a Not Yet Valid! message if the certificate has not yet |
| become applicable. |
|
|
Valid To | This field displays the date that the certificate expires. The text displays in red and |
| includes an Expiring! or Expired! message if the certificate is about to expire or |
| has already expired. |
|
|
Modify | Click the Edit icon to open a screen with an |
| certificate. |
| Click the Remove icon to remove the certificate. A window displays asking you to |
| confirm that you want to delete the certificate. |
| You cannot delete a certificate that one or more features is configured to use. |
| Do the following to delete a certificate that shows *SELF in the Type field. |
| 1. Make sure that no other features, such as HTTPS, VPN, SSH are configured to |
| use the *SELF certificate. |
| 2. Click the Edit icon next to another |
| the Create button if you need to create a |
| 3. Select the Default |
| host certificates check box. |
| 4. Click Apply to save the changes and return to the My Certificates screen. |
| 5. The certificate that originally showed *SELF displays SELF and you can delete |
| it now. |
| Note that subsequent certificates move up by one when you take this action |
|
|
Create | Click this to go to the screen where you can have the ZyXEL Device generate a |
| certificate or a certification request. |
|
|
| 189 |
|
|