User's Manual
Table Of Contents
- Reference Manual for the NETGEAR ProSafe VPN Client
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Installation
- Chapter 4 Configuring L2TP Connections
- Chapter 5 Using the Security Policy Editor
- What is the Security Policy Editor?
- Basic Steps to Configure a Security Policy
- How to Secure All Connections
- How to Configure Global Policy Settings
- How to Configure Other Connections
- How to Add and Configure a Connection
- How to Enter a Preshared Key
- How to Configure a Gateway
- Configure My Identity
- Configure Security Policy Connection Options
- Configure Authentication (Phase 1)
- Configure Key Exchange (Phase 2)
- Edit a Distinguished Name
- Configure and Manage Connections
- Manage Proposals
- Manage Redundant Gateways
- Manage the Security Policy
- Chapter 6 Using the Certificate Manager
- What is the Certificate Manager?
- Obtain Certificates
- With Online (SCEP) Enrollment
- CAs that Support SCEP
- Retrieve a CA Certificate Online
- Configure a CA Certificate
- Use an HTTP Proxy Server for Online Certificate Requests and CRL Updates
- Import a CA Certificate
- Select a CSP
- Request a Personal Certificate
- Define How Often to Check for and Retrieve New Personal Certificates
- Retrieve a Personal Certificate Manually
- Manage Certificate Requests
- With Manual (File-Based) Enrollment
- Obtain Certificates Through Internet Explorer
- With Online (SCEP) Enrollment
- Manage Certificates
- Manage Certificate Revocation Lists (CRLs)
- Manage the Trust Policy
- Chapter 7 Using Sessions
- Chapter 8 Distributing Customized Profiles
- Chapter 9 Troubleshooting
- Appendix A Networks, Routing, and Firewall Basics
- Appendix B Virtual Private Networking
- Appendix C NETGEAR ProSafe VPN Client to NETGEAR FVS318 or FVM318 VPN Routers
- Appendix D NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
- Glossary
- Index
Reference Manual for the NETGEAR ProSafe VPN Client
6-22 Using the Certificate Manager
202-10015-01
– If the certificate you want to verify isn't listed on the tab, clear the Show only trusted
roots check box. Every root CA certificate on the computer displays on the tab.
• For a subordinate CA certificate, click the CA Certificates tab.
• For an RA certificate, click the RA Certificates tab.
– Click the certificate to verify.
– Click Verify. The client checks the validity dates and attempts to check the certificate
against its revocation list. A dialog box opens with this information:
• Current status of the certificate: valid/verified or invalid/not verified, depending on the
certificate type
• If the certificate is invalid or not verified, a brief explanation of why
• The certificate's contents and attributes, such as its name, serial number, and key size
2. To close this dialog box, click OK.
Personal Certificates
In these two situations, you must import a personal certificate to the Certificate Manager:
• If you created a personal certificate file from the email that the CA when you manually
requested a personal certificate
• To bring a personal certificate file exported from the Certificate Manager (not necessarily in
your client) to your client's Certificate Manager
Note: Make sure that you have the password entered to protect the private key when this
personal certificate was exported.
1. In the Certificate Manager, click the My Certificates tab.
2. Click Import Certificate. The Import Certificate dialog box opens.
3. In the Import Type group, select the certificate and private key type to import:
• For online certificate enrollment, click PKCS12 Personal Certificate.
• For older certificate and key types, click Certificate and Private Key File.
• For a manual certificate request, click Certificate Request Response File.
4. By default, the Import certificate to local machine store check box is clear, which places the
imported certificate in your—the logged-on user's—personal certificate store. Unless your
network security administrator instructs you to change it, accept the default.