Page 166 / 240 Scroll up to view Page 161 - 165
Chapter 12 USB Services
Basic Home Station VDSL2 P8701T User’s Guide
166
Page 167 / 240
Basic Home Station VDSL2 P8701T User’s Guide
167
C
HAPTER
13
Certificates
13.1
Overview
The VDSL Router can use certificates (also called digital IDs) to authenticate users. Certificates are
based on public-private key pairs. A certificate contains the certificate owner’s identity and public
key. Certificates provide a way to exchange public keys for use in authentication.
13.1.1
What You Can Do in this Chapter
Use the
Local Certificates
screens to generate certification requests and import the VDSL
Router's CA-signed certificates (
Section 13.4 on page 171
).
Use the
Trusted CA
screen to save the certificates of trusted CAs to the VDSL Router (
Section
13.4 on page 171
).
13.2
What You Need to Know
The following terms and concepts may help as you read through this chapter.
Certification Authority
A Certification Authority (CA) issues certificates and guarantees the identity of each certificate
owner. There are commercial certification authorities like CyberTrust or VeriSign and government
certification authorities. The certification authority uses its private key to sign certificates. Anyone
can then use the certification authority's public key to verify the certificates. You can use the VDSL
Router to generate certification requests that contain identifying information and public keys and
then send the certification requests to a certification authority.
13.3
The Local Certificates Screen
Click
Wireless network > Classic configuration > Advanced Setup > Certificate
to open the
Local Certificates
screen. This screen displays the VDSL Router’s list of certificates and
certification requests.
Page 168 / 240
Chapter 13 Certificates
Basic Home Station VDSL2 P8701T User’s Guide
168
Figure 67
Local Certificates
The following table describes the labels in this screen.
13.3.1
Create Certificate Request
Click the
Local Certificates
screen’s
Create Certificate Request
button to open the following
screen. Use this screen to have the VDSL Router generate a certification request.
Table 59
Local Certificates
LABEL
DESCRIPTION
Name
This field displays the name used to identify this certificate. It is recommended that you
give each certificate a unique name.
In Use
This field shows whether or not the VDSL Router currently uses the certificate.
Subject
This field displays identifying information about the certificate’s owner, such as CN
(Common Name), OU (Organizational Unit or department), O (Organization or company)
and C (Country). It is recommended that each certificate have unique subject
information.
Type
This field displays whether the entry is for a certificate or a certificate request.
Action
Click the
View
button to open a screen with an in-depth list of information about the
certificate (or certification request).
For a certification request, click
Load Signed
to import the signed certificate.
Click the
Remove
button to delete the certificate (or certification request). You cannot
delete a certificate that one or more features is configured to use.
Create Certificate
Request
Click this button to go to the screen where you can have the VDSL Router generate a
certification request.
Import Certificate
Click this button to save the certificate that you have enrolled from a certification
authority from your computer to the VDSL Router.
Page 169 / 240
Chapter 13 Certificates
Basic Home Station VDSL2 P8701T User’s Guide
169
Figure 68
Create Certificate Request
The following table describes the labels in this screen.
After you click
Apply
, the following screen displays to notify you that you need to get the certificate
request signed by a Certificate Authority. If you already have, click
Load_Signed
to import the
signed certificate into the VDSL Router. Otherwise click
Back
to return to the
Local Certificates
screen.
Table 60
Create Certificate Request
LABEL
DESCRIPTION
Certificate Name
Type up to 63 ASCII characters (not including spaces) to identify this certificate.
Common Name
Select
Auto
to have the VDSL Router configure this field automatically. Or select
Customize
to enter it manually.
Type the IP address (in dotted decimal notation), domain name or e-mail address in
the field provided. The domain name or e-mail address can be up to 63 ASCII
characters. The domain name or e-mail address is for identification purposes only
and can be any string.
Organization Name
Type up to 63 characters to identify the company or group to which the certificate
owner belongs. You may use any character, including spaces, but the VDSL Router
drops trailing spaces.
State/Province Name
Type up to 32 characters to identify the state or province where the certificate owner
is located. You may use any character, including spaces, but the VDSL Router drops
trailing spaces.
Country/Region Name
Select a country to identify the nation where the certificate owner is located.
Apply
Click
Apply
to save your changes.
Page 170 / 240
Chapter 13 Certificates
Basic Home Station VDSL2 P8701T User’s Guide
170
Figure 69
Certificate Request Created
13.3.2
Load Signed Certificate
After you create a certificate request and have it signed by a Certificate Authority, in the
Local
Certificates
screen click the certificate request’s
Load Signed
button to import the signed
certificate into the VDSL Router.
Note: You must remove any spaces from the certificate’s filename before you can import
it.

Rate

4.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top