User's Manual
Table Of Contents
- Reference Manual for the NETGEAR ProSafe VPN Client
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Installation
- Chapter 4 Configuring L2TP Connections
- Chapter 5 Using the Security Policy Editor
- What is the Security Policy Editor?
- Basic Steps to Configure a Security Policy
- How to Secure All Connections
- How to Configure Global Policy Settings
- How to Configure Other Connections
- How to Add and Configure a Connection
- How to Enter a Preshared Key
- How to Configure a Gateway
- Configure My Identity
- Configure Security Policy Connection Options
- Configure Authentication (Phase 1)
- Configure Key Exchange (Phase 2)
- Edit a Distinguished Name
- Configure and Manage Connections
- Manage Proposals
- Manage Redundant Gateways
- Manage the Security Policy
- Chapter 6 Using the Certificate Manager
- What is the Certificate Manager?
- Obtain Certificates
- With Online (SCEP) Enrollment
- CAs that Support SCEP
- Retrieve a CA Certificate Online
- Configure a CA Certificate
- Use an HTTP Proxy Server for Online Certificate Requests and CRL Updates
- Import a CA Certificate
- Select a CSP
- Request a Personal Certificate
- Define How Often to Check for and Retrieve New Personal Certificates
- Retrieve a Personal Certificate Manually
- Manage Certificate Requests
- With Manual (File-Based) Enrollment
- Obtain Certificates Through Internet Explorer
- With Online (SCEP) Enrollment
- Manage Certificates
- Manage Certificate Revocation Lists (CRLs)
- Manage the Trust Policy
- Chapter 7 Using Sessions
- Chapter 8 Distributing Customized Profiles
- Chapter 9 Troubleshooting
- Appendix A Networks, Routing, and Firewall Basics
- Appendix B Virtual Private Networking
- Appendix C NETGEAR ProSafe VPN Client to NETGEAR FVS318 or FVM318 VPN Routers
- Appendix D NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
- Glossary
- Index
Reference Manual for the NETGEAR ProSafe VPN Client
6-30 Using the Certificate Manager
202-10015-01
You can, however, change the trust policy on the Root CA Certificates tab, and view a real-time
list of the trusted root CA certificates. When you change the trust policy on this tab, the client
dynamically updates the trust policy selected on the Trust Policy tab.
1. In the Certificate Manager, click the Root CA Certificates tab.
2. Select the Show only trusted roots check box. Based on the trust policy specified in the Trust
policy--trust these roots for IPSec group, all the trusted root CA certificates display in the
list.
The Trust policy--trust these roots for IPSec options match those on the Trust Policy tab,
with different labels:
Table 6-3:
Caution: Depending on the operating system and Internet Explorer version installed on your
computer, there may be at least 100 root CA certificates on your computer. Before clicking All
roots, carefully consider the security ramifications.
3. In the Trust policy--trust these roots for IPSec group, click the trust policy option to apply;
this takes effect immediately. The list of trusted root CAs is updated to reflect the change.
Trust policy options:
Root CA Certificates tab Trust Policy tab
Configured roots (default) Trust specific root CAs (default)
Issuers of my certs Trust CAs that have issued a local
personal certificate
All roots Trust all root CAs installed on this
computer