Manual
Billion BiGuard VPN Client
Chapter 4: VPN Configuration
29
Certificate Management (Please see Appendix A - Compatible table of Billion
VPN enabled devices and BiGuard VPN Client)
Additional support documents
BiGuard VPN Client uses X509 certificates with PEM format. This kind of certificates is created
with OpenSSL, not with BiGuard VPN Client.
In order to use X509 Certificates with BiGuard VPN client, you must have the following items:
1. Root certificate
2. User certificate
3. Private key of the user certificate
The private key must not be encrypted. X509 certificates are used during Phase 1.
How to configure IPSec VPN Client with Certificates?
1. Select radio button “Certificate” in the “Authentication” window and click on “Certificates Mgt”
2. Click on "Browse" and select the appropriate files.
1. Root certificate is copied into directory " [install_path]\ca\".
2. User certificate is copied into directory " [install_path]\cert\".
3. User certificate private key is copied to " [install_path]\private\local.key".
3. Open 'Advanced button' and fill Local ID with:
Type: "DER_ASN1_DN".
Value: subject user certificate ("Subject:") conten like "C=FR, ST=Paris, L=Paris,
O=TheGreenBow, OU=Internal OpenSSL CA,
CN=exemple/Email=support@thegreenbow.com".