Manualshelf

R3721-F3210-F3171-HP High-End Firewalls VPN Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
291292293294295296297298299300
285
Enter device as the common name.
Click Apply.
# Create a PKI domain.
Select VPN > Certificate Management > Domain from the navigation tree and then click Add to
perform the configurations shown in Figure 186.
Figure 186 Add a PKI do
main
Enter torsa as the PKI domain name.
Enter CA server as the CA identifier.
Select aaa as the local entity.
Select RA as the authority for certificate request.
Enter http://4.4.4.1:8080/certsrv/mscep/mscep.dll as the URL for certificate request. The URL must
be in the format of http://host:port/certsrv/mscep/mscep.dll, where host and port are the host
address and port number of the CA server.
Select Manual as the certificate request mode.
Click Apply. When the system displays "Fingerprint of the root certificate not specified. No root
certificate validation will occur. Continue?", click OK to confirm.
# Generate an RSA key pair.
Select VPN > Certificate Management > Certificate from the navigation tree and then click Create
Key to perform the configurations shown in Figure 187.
Figure 187 Generate an
RSA key pair