Manualshelf

HP VPN Firewall Appliances Access Control Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
51525354555657585960
44
To meet the requirements, configure the firewall as an HTTPS server and apply for a certificate for the
firewall. The name of the certificate authority (CA) that issues certificates to the firewall and the host is CA
server.
This example uses a Windows server as the CA that has the Simple Certificate Enrollment Protocol (SCEP)
component installed.
Before proceeding with the following configuration, make sure that the firewall, the host, and CA can
reach each other.
Figure 34 Network diagram
Configuring a PKI entity
1. Select VPN > Certificate Management > Entity from the navigation tree.
2. Click Add.
The page for adding a PKI entity appears.
3. Configure a PKI entity as shown in Figure 35.
a. Enter en as the PKI entity n
ame.
b. Enter http-server1 as the common name.
c. Enter ssl.secur
ity.com in the FQDN field.
4. Click Apply.