User's Manual
Table Of Contents
- Reference Manual for the NETGEAR ProSafe VPN Client
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Installation
- Chapter 4 Configuring L2TP Connections
- Chapter 5 Using the Security Policy Editor
- What is the Security Policy Editor?
- Basic Steps to Configure a Security Policy
- How to Secure All Connections
- How to Configure Global Policy Settings
- How to Configure Other Connections
- How to Add and Configure a Connection
- How to Enter a Preshared Key
- How to Configure a Gateway
- Configure My Identity
- Configure Security Policy Connection Options
- Configure Authentication (Phase 1)
- Configure Key Exchange (Phase 2)
- Edit a Distinguished Name
- Configure and Manage Connections
- Manage Proposals
- Manage Redundant Gateways
- Manage the Security Policy
- Chapter 6 Using the Certificate Manager
- What is the Certificate Manager?
- Obtain Certificates
- With Online (SCEP) Enrollment
- CAs that Support SCEP
- Retrieve a CA Certificate Online
- Configure a CA Certificate
- Use an HTTP Proxy Server for Online Certificate Requests and CRL Updates
- Import a CA Certificate
- Select a CSP
- Request a Personal Certificate
- Define How Often to Check for and Retrieve New Personal Certificates
- Retrieve a Personal Certificate Manually
- Manage Certificate Requests
- With Manual (File-Based) Enrollment
- Obtain Certificates Through Internet Explorer
- With Online (SCEP) Enrollment
- Manage Certificates
- Manage Certificate Revocation Lists (CRLs)
- Manage the Trust Policy
- Chapter 7 Using Sessions
- Chapter 8 Distributing Customized Profiles
- Chapter 9 Troubleshooting
- Appendix A Networks, Routing, and Firewall Basics
- Appendix B Virtual Private Networking
- Appendix C NETGEAR ProSafe VPN Client to NETGEAR FVS318 or FVM318 VPN Routers
- Appendix D NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
- Glossary
- Index
Reference Manual for the NETGEAR ProSafe VPN Client
6-28 Using the Certificate Manager
202-10015-01
2.
Click Update All CRLs.
3. Click Close.
View a CRL
1. In the Certificate Manager, click the CRLs tab.
2. Click the CRL to view.
3. Click View. A dialog box with information about the selected CRL opens.
4. To close this dialog box, click OK.
Delete a CRL
If you no longer need the CRL for a particular CA, you can delete it from the Certificate Manager.
1. In the Certificate Manager, click the CRLs tab.
2. Click the CRL to delete.
3. Click Delete.
4. When a confirmation message box opens, click OK.
5. Click Close.
Manage the Trust Policy
In the Certificate Manager, when you trust a root CA certificate, the client considers this CA, its
subordinate CAs, and the certificates issued by these CAs as valid for IPSec communications,
Conversely, when a root CA certificate is not trusted for IPSec sessions, neither are the certificates
issued by it or its subordinate CAs.
The trust policy specifies the trusted root CAs:
• Root CAs specifically configured for IPSec communications (the default)
The client selects this option when it imports a root CA or reinstalls it after you upgrade the
client, if you saved your certificates.
There are two ways to identify a trusted root CA certificate in the Certificate Manager: