User's Manual
Table Of Contents
- Reference Manual for the NETGEAR ProSafe VPN Client
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Installation
- Chapter 4 Configuring L2TP Connections
- Chapter 5 Using the Security Policy Editor
- What is the Security Policy Editor?
- Basic Steps to Configure a Security Policy
- How to Secure All Connections
- How to Configure Global Policy Settings
- How to Configure Other Connections
- How to Add and Configure a Connection
- How to Enter a Preshared Key
- How to Configure a Gateway
- Configure My Identity
- Configure Security Policy Connection Options
- Configure Authentication (Phase 1)
- Configure Key Exchange (Phase 2)
- Edit a Distinguished Name
- Configure and Manage Connections
- Manage Proposals
- Manage Redundant Gateways
- Manage the Security Policy
- Chapter 6 Using the Certificate Manager
- What is the Certificate Manager?
- Obtain Certificates
- With Online (SCEP) Enrollment
- CAs that Support SCEP
- Retrieve a CA Certificate Online
- Configure a CA Certificate
- Use an HTTP Proxy Server for Online Certificate Requests and CRL Updates
- Import a CA Certificate
- Select a CSP
- Request a Personal Certificate
- Define How Often to Check for and Retrieve New Personal Certificates
- Retrieve a Personal Certificate Manually
- Manage Certificate Requests
- With Manual (File-Based) Enrollment
- Obtain Certificates Through Internet Explorer
- With Online (SCEP) Enrollment
- Manage Certificates
- Manage Certificate Revocation Lists (CRLs)
- Manage the Trust Policy
- Chapter 7 Using Sessions
- Chapter 8 Distributing Customized Profiles
- Chapter 9 Troubleshooting
- Appendix A Networks, Routing, and Firewall Basics
- Appendix B Virtual Private Networking
- Appendix C NETGEAR ProSafe VPN Client to NETGEAR FVS318 or FVM318 VPN Routers
- Appendix D NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
- Glossary
- Index
Reference Manual for the NETGEAR ProSafe VPN Client
5-8 Using the Security Policy Editor
202-10015-01
How to Enter a Preshared Key
A preshared key is an alphanumeric character string that can be used instead of certificates to
authenticate the identity of communicating parties during Phase 1 IKE negotiations. This character
string, which can contain from 8 through 255 characters, is called preshared because the remote
party needs it before you can communicate with it. Both parties must enter this preshared key in
their IPSec-compliant devices, such as a firewall, gateway encryptor, router, or software client.
Preshared keys can be included with the security policy when it is exported or included in a
customized client installation.
When you use preshared keys, you don't have to deal with CAs and certificates. Preshared keys,
however, do not provide the same level of security as certificates.
Before you begin to configure the security policy, decide whether to use certificates or preshared
keys.
To use preshared keys instead of certificates for authentication, enter the preshared key when you
Configure My Identity for a selected connection.
Note: Preshared keys are not global policy settings; therefore, you must assign the key to each
applicable connection individually.
1. In the Security Policy Editor, in the Network Security Policy list, expand the specific secure
connection .
2. In this connection, click My Identity.
3. In the Select Certificate box, click None.
4. Click Pre-Shared Key. The Pre-shared Key dialog box opens.
5. Click Enter Key.
6. Type the key.
7. Click OK.
8. Click Save.
9. Complete configuring My Identity.