Device Configuration : Configure : VPN : Certificates : Add Certificate : Generate Self-Signed Certificate
Generate Self-Signed Certificate
Use the Certificate page to generate self-signed certificate.
1. Enter details to generate Self Signed Certificate (Option available only after configuring Default CA Parameters)
Name
Specify a name to identify the Certificate.
Valid From and Valid Up To
Specify certificate validity period using Calendar . Validity period is the certificate life and indicates period up to which the certificate will be considered as valid.
Default - 1 day
Key Length
Select key length. Key length is the number of bits used to construct the key.
Available Options:
* 512
* 1024
* 1536
* 2048
* 4096
Generally, the larger the key, the less chance that it will be compromised but requires more time to encrypt and decrypt data than smaller keys.
Default - 512
Key Encryption
Click to enable the key encryption.
Passphrase
Passphrase for a Certificate used for authentication. Passphrase must be at least 8 characters long. This option is enabled only if the Key Encryption option is selected.
Confirm Passphrase
Re-enter passphrase for confirmation.
Certificate ID
Specify certificate ID. You can specify any one of the following options:
Available Options:
* DNS
* IP Address(IPv4/IPv6 Address)
* Email Address
* DER ASN1 DN(X.509) (Applicable when Authentication Type is Digital Certificate)
Once the certificate is created, you need to download and send this certificate to the remote peer with whom the connection is to be established.
Country Name
Select the country.
State
Specify the state within the country.
Locality Name
Specify the name of the locality.
Organization Name
Specify the organization name, which will use this certificate and domain name. This domain will be certified to use the Certificate.
Use unique Domain name only.
Organization Unit Name
Specify the department/unit name, which will use this certificate and domain name. This domain will be certified to use the Certificate.
Use unique Domain name only.
Common Name
Specify the common name.
A common name comprises of host + domain name or is a fully qualified domain name that is used to resolve to SSL VPN interface. It must be same as that of the Web address to be accessed when connecting to a secured site.
Email Address
Specify the Email Address of the contact person for communication.
2. Click Save to generate self-signed certificate.