Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100430

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
751752753754755756757758759760
7-241
Virtual Private Networks
Configure a GRE over IPsec VPN with IKE
Figure 7-207. VPN > Certificates > SCEP Window
3. For SCEP Server IP Address/Domain Name, type either the IP address or
FQDN of your CA server. The CA must, of course, support SCEP.
4. For SCEP Server Port, type the port number on which your CA server listens
for SCEP messages.
The default port is 80.
5. For CGI-Path, type the correct path to the program on the CA server that
executes SCEP functions.
The default path, /certsrv/mscep/mscep.dll, is valid on a typical Windows
CA. Otherwise, your CA should tell you the correct CGI path.
6. For Unique CA Identifier (Suffix to CGI-Path), type the CN for the CA server.
For example: /CN=<CAcommonname>
The unique CA identifier is not always necessary (in which case, you can
leave the box empty). Your CA should tell you if you need to specify a
unique identifier and, if you do, what it is.
7. Click Apply My Changes.
8. Click Save.
9. Next, you must import the CA certificate. Click the Certificate Authorities
tab.
Figure 7-208. VPN > Certificates > Certificate Authorities Window